OPNsense Forum

English Forums => 24.7, 24.10 Legacy Series => Topic started by: Sinister Pisces on January 29, 2025, 08:37:37 PM

Title: SSH/Console Login: Select OPNSense_Shell?
Post by: Sinister Pisces on January 29, 2025, 08:37:37 PM
Hello,

I've got an admin user that I created so I wouldn't have to login as root. On SSH login, I'd like that user to be presented with the OPNSense shell (the menu that gives access to various options like updating the system, with an option to drop to a real shell).

Is it possible to set a non-root user up like that? In the EDIT USER options for Login Shell, all I see is /bin/csh, /bin/sh, and /bin/tcsh.

It also seems like my non-root admin can't actually launch the OPNSense Shell. I have to be root to do that. Is there any way around that?
Title: Re: SSH/Console Login: Select OPNSense_Shell?
Post by: franco on January 29, 2025, 08:58:18 PM
Hi!

opnsense-shell is reserved for UID 0 users due to the nature of the privileged access being required to run the (re)configuration. Admins are not UID 0 except for the preinstalled root user.  In these cases I use "sudo su" with the admin users to gain access to opnsense-shell.


Cheers,
Franco
Title: Re: SSH/Console Login: Select OPNSense_Shell?
Post by: Sinister Pisces on January 29, 2025, 09:24:29 PM
Thanks!

Your approach is what I've been doing, and it's worked well. Just wondered if there was an easier way. With your explanation, it makes sense that there's not.