Allow Other SSH Users to Access CA API Gateway

Document ID : KB000113556
Last Modified Date : 16/10/2018
Show Technical Document Details
Question:
The only users who can ssh to the CA API Gateway are ssgconfig and root. Why only those 2 users? Is there a way we can create a login user and sudo as root?
Answer:
You can allow other users to login to the Gateway server and sudo to root. There are some configuration changes that need to be made on the OS. The following steps were performed on a CentOS 7 and RHEL 7 server:

1. Login as the root user
2. Edit the /etc/ssh/sshd_config file
3. Look for a line called 'PermitRootLogin yes' (The line should be commented out)
4. Uncomment this line and save the file
5. Run command: service sshd restart
6. Create a new user: adduser username
6. Provide a password: passwd username
7. Grant user sudo privileges: gpasswd -a username wheel