Unable to modify the SSH Server properties by doing direct edits in the "/etc/ssh/sshd_config" file after installing or upgrading to ESX 8.0.2 or later.

• Provides "esxcli" commands to list SSH Server properties and set property value.

VMware vSphere ESXi 8.0 U2 or later

Starting with ESXi 8.0.2, a user can modify a subset of SSH Server configuration using "esxcli commands"; hence, direct modification to the /etc/ssh/sshd_config file is no longer supported.

List the currently configured properties and their values

• esxcli system ssh server config list

Set a property value

• esxcli system ssh server config set -k <key/property name> -v <value>

List all available property values

• esxcli system ssh server config list --all

It appears there is no API call available to edit the value for ESX server config “Password Authentication” using PowerCLI.

• APIs Broadcom Developer Documentation

  • VMware vSphere And vSAN Commands Index

ESXi 8.0.2 以降で SSH サーバーのプロパティを設定する方法

Information on some removed or deprecated sshd_config keys:

AcceptEnv - This has been removed from the available options.

KerberosAuthentication / GSSAPIAuthentication - Both of these are not exposed in newer versions of ESXi. Authentication is primarily managed through UsePAM

Match Address - This has been removed. The supported method for restricting SSH access by IP address in ESXi is now the ESXi Firewall rather than the ssh configuration file.