Enabling Password Authentication for SSH in k3os

This tutorial explains how to enable password authentication for SSH in k3os, a Linux distribution for lightweight Kubernetes clusters.

Enabling Password Authentication for SSH in k3os
This is not recommended for production environments. Using certificates for SSH connections is the recommended practice for securing your system.
Please note that k3OS is deprecated. We recommend switching to flatcar instead.

By default, k3OS only allows SSH connections to be made using certificates for security purposes. However, in some cases, you may need to use classic username/password authentication.


  • An edge device running k3OS
  • Physical access to that device


  1. Access the edge device using a computer with a screen and keyboard. Log in with the username rancher and password rancher.
  2. Open the file /etc/ssh/sshd_config using a text editor, such as Vim or Nano.
  3. Change the value of PasswordAuthentication to yes. You can use the following command:

    sudo vim /etc/ssh/sshd_config -c "%s/PasswordAuthentication no/PasswordAuthentication yes/g" -c "wq"
  4. Restart the sshd service using the following command:
    sudo systemctl restart sshd
  5. You can now log in to your k3os device using your username and password.

Stay up-to-date

Subscribe to the UMH Learning Hub Newsletter to receive the latest updates and gain early access to our blog posts.