In the time of Installation/Upgrades/OS Admin activities, Most of us will use Root user only for SSH Login/SWPM/SUM instead of using Privileged User (SAPINST_REMOTE_ACCESS_USER) having access as same as root.
From RHEL 9.2 onwards, Root login is prohibited by default. Even when we enabled Remote Login and try to login with Root user, Remote login automatically turn off and SSH Login (Putty) will fail with "Connection Refused" error.
⭐Post Installation, Root User login seems to be possible. However, If no action taken, It will get blocked automatically in 1 or 2 days.
Quick Resolution steps:
We can do below configuration to enable root login permanently.
1) Update to latest openssh rpm using command - yum install openssh
2) Enable openssh via systemctl enable sshd??(We can start via systemctl start sshd)
3) Remove Root name from /etc/cockpit/disallowed-users
4) Uncomment and change entry to PermitRootLogin Yes in /etc/ssh/sshd_config file.
5) Ensure Atleast 711 permission provided for privilege separation directory /usr/share/empty.sshd
Root login can be done without any issues post changing/checking above settings. We can also revert settings once our activity completed.
Planning OS Installation/Upgrades to match SAP System Compatibilities is more critical. Please use above hint to overcome root login issue if we stuck.
Disclaimer: My goal is to enable root user as like other basis peoples who uses root. Hence, above steps has been shared. Always take decision and follow steps w.r.t your project criticality only.
Note 2708098 - Forbidden: User root is not authorized to process the operation ExecuteOperation on SUM UI
Thanks for visiting !!!
No comments:
Post a Comment