SSH Server for Windows Configuration: How to Allow User Certificate Logon


With the Georgia SoftWorks SSH Server for Windows, you can enable or disable user certificate logon.

It only take 5 easy steps to enable/disable user certificate logon for you GSW SSH Server for Windows.

Some environments may want to restrict this capability and not allow Digital Certificate Logons, while others may prefer it. Whatever your preference is, it is only a few simple steps to enable or disable the use of Digital Certificates for Logon Authentication.

Ability to modify the settings is controlled by the registry key: bEnableLogonCertificate. The key is:

  • For Win x64: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Georgia SoftWorks\GSW_SSHD\Parameters\bEnableLogonCertificate
  • For Win x86: HKEY_LOCAL_MACHINE\SOFTWARE\Georgia SoftWorks\GSW_SSHD\Parameters\bEnableLogonCertificate

The value 0x01 will allow digital certificate logon.

The value 0x00 does not allow digital certificate logon. The default value is 0x01, which allows digital certificate logon authentication.

5 Steps to Change the registry key for enabling or disabling Digital Certificate Logon Authentication on your SSH Server for Windows:

  1. Click the Start button at the bottom left corner of your screen and click RUN
  2. Type REGEDIT, and then click OK
  3. Select Registry Key:
    • For Win x64: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Georgia SoftWorks\GSW_SSHD\Parameters\bEnableLogonCertificate
    • For Win x86: HKEY_LOCAL_MACHINE\SOFTWARE\Georgia SoftWorks\GSW_SSHD\Parameters\bEnableLogonCertificate
  4. Select the menu item Edit and then click on Modify
  5. Enter the new value for the bEnableLogonCertificate and click OK

The new value will take effect when the Georgia SoftWorks SSHD service is restarted

Posted in How To's and Helpful Information on Apr 21, 2021



LinkedIn Facebook Twitter Pinterest Reddit StumbleUpon Tumblr Email