4 of 4 people found this helpful
Well both fields are usable at the same time (in v 8.1) but I would suspect that the password field is irrelevant if you are using keys.
The normal way to use the key with increased security is to add a passphrase to the key. I implemented a very high-security environment inside a DMZ where I had no access, only the Unix SA had local login. In this case I created the keys with a passphrase, gave the keys to the Unix guy to copy into the AFT (MFT) keys directory and did not pass on the passphrase to him. In this way neither of us had full control.
2 of 2 people found this helpful
Hi Ole Kristain,
I think AFT/MFT uses the 'OR' (instead of 'AND') relation when you configure both user name, password and ssh key for authentication.
As per my understanding if you both, authentication will be always with user name and password unless any of the authentication is disabled in sshd_conf.