Bug ID 477524: Enable ssh for admin account and disable ssh for root account for Amazon deployments

Last Modified: Apr 10, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP VE(all modules)

Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3

Fixed In:
11.6.0 HF4

Opened: Sep 02, 2014
Severity: 3-Major

Symptoms

Amazon's recent requirement was to disable ssh access for root account. All the management on the AWS instance should be done through different account using ssh.

Impact

There will be no root access for VMs from next Amazon Market release. The replacement is admin account. All management functionality will be available by ssh-in using admin account.

Conditions

Amazon AWS environment.

Workaround

None

Fix Information

F5 disabled ssh for root account for VMs in Amazon cloud (after Amazon mandated it). F5 enabled ssh permissions for built-in admin account. The default shell for admin account is tmsh (instead of bash). On all new Amazon deployments all management tasks should be done through admin account.

Behavior Change

There will be no root access for VMs from next Amazon Market release. The replacement is admin account. All management functionality will be available by ssh-in using admin account.