I attempted the “Day 3: Secure Root SSH Access” task over the last two days and followed all the required steps to disable root access on stapp01, stapp02, and stapp03 app servers.
However, the validation is still failing and indicates that stapp01 continues to have root SSH access enabled, while the other servers are correctly blocked using the same steps.
Could you please check once whether root access is actually blocked on stapp01 or if there is any discrepancy on that server?
Thank you for your help.
The typical mistake people make on this one is not restarting the sshd servers correctly. After you change the settings in the sshd_config file, make sure you call “systemctl restart sshd” on each of the servers.
Thank you very much Rob, now able to clear that question and learning as well.