Getting started with SSH
Find out how to use SSH connections to access your server
Find out how to use SSH connections to access your server
Last updated 8th June 2022
The SSH (Secure Shell) communication protocol is the main practice to establish encrypted host connections through untrusted networks. The OpenSSH tool is natively installed on all OVHcloud servers (VPS, dedicated servers, Public Cloud instances) to allow secure remote server logins and other operations.
This guide explains how to securely access your server with SSH.
OVHcloud is providing you with services for which you are responsible, with regard to their configuration and management. You are therefore responsible for ensuring they function correctly.
If you encounter any difficulties performing these actions, please contact a specialist service provider and/or discuss the issue with our community on https://community.ovh.com/en/. OVHcloud cannot provide you with technical support in this regard.
This guide is not applicable for standard Windows server installations since they rely on the Remote Desktop Protocol for connections. SSH connections are used for the OVHcloud rescue mode however. You can find more information in the Go further section of this guide.
There are multiple ways to authenticate a connection to a remote device via SSH. The following instructions will involve the authentication method with username and password. You can also configure SSH keys to enable secure logins without passwords. Find the details in our SSH key guide.
The login credentials (username and password) are sent to you by email after a server installation or reinstallation from the OVHcloud Control Panel.
The username corresponds to the operating system, for example ubuntu
or debian
. To connect, you also need to specify the IPv4 address or the hostname of the server. These details are available in the installation email and in the Control Panel.
Be sure to consult our "Getting started" guides as well:
A command line client for SSH (OpenSSH) is usually available by default. Open the Terminal application and connect to the server with the following command:
ssh username@server_IP
If the SSH port of the server is not the standard one, use this command instead:
ssh username@server_IP -p port_number
The latest versions of Windows natively include OpenSSH for connections from the PowerShell or the Command Prompt application.
Right-click on the Windows start button and select Windows PowerShell
. Alternatively, use the search field to start one of these programs.
Connect to the server with the following command:
ssh username@server_IP
If the SSH port of the server is not the standard one, use this command:
ssh username@server_IP -p port_number
When prompted for a password, type the password of the connecting user and press Enter
.
If this is a new connection, your SSH client will receive a key fingerprint from the server. Enter "yes" to confirm and then the password of the connecting user to log in.
ssh ubuntu@169.254.10.254
The authenticity of host '169.254.10.254 (169.254.10.254)' can't be established.
ECDSA key fingerprint is SHA256:rRwrdsmJfzvJF5k0a4JmMSdaWbTlCgRKBukbmQ3gmso.
Are you sure you want to continue connecting (yes/no/[fingerprint])?
Warning: Permanently added '169.254.10.254' (ECDSA) to the list of known hosts.
ubuntu@169.254.10.254's password:
The fingerprint is then saved on your device and will be verified for each new connection. If the key has changed on the remote host, you will receive a warning message when trying to connect, for example:
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Host key verification failed.
Offending ECDSA key in /home/user/.ssh/known_hosts:3
It means that one the following has occured:
The warning message does not necessarily indicate a security issue. If you have not initiated one of these incidents however, the remote server might be compromised.
To resolve this, use the following command with the IP address of your server:
ssh-keygen -f ~/.ssh/known_hosts -R 169.254.10.254
Alternatively, open the known_hosts
file located in your home folder with a text editor and delete the "offending" line that was specified in the warning message:
nano ~/.ssh/known_hosts
Save the changes and exit the editor. The new fingerprint has to be accepted at the next server login.
On Windows, the location of the known_hosts
file and the line you have to delete are specified as well, for example:
Offending ECDSA key in C:\\Users\\YourWindowsUser/.ssh/known_hosts:3
Navigate to this folder, right-click on the file and open it with the Notepad application.
Delete the pertinent line, in this case the third one. Save the changes and exit the editor. The new fingerprint has to be accepted at the next server login.
There are many software applications for every type of OS that enable you to connect to your server via the SSH protocol.
For example, PuTTY for Windows is an open source SSH client software with a graphical user interface. It has been ported to other platforms as well and is available from the official website, software package managers and Homebrew.
Start PuTTY and enter the IP address of the server. Specify the port number if the standard port is not used. Then click on Open
to connect. You will be prompted for username and password.
One advantage of PuTTY is the ability to save multiple sessions. Enter the connection details into the Saved Sessions
field and click on Save
.
As usual, the fingerprint warning appears at the first connection. Click Accept
to save the fingerprint or select Connect Once
.
Please consult the official FAQ and documentation of PuTTY for more information.
Join our user community on https://community.ovh.com/en/.
Please feel free to give any suggestions in order to improve this documentation.
Whether your feedback is about images, content, or structure, please share it, so that we can improve it together.
Your support requests will not be processed via this form. To do this, please use the "Create a ticket" form.
Thank you. Your feedback has been received.
Access your community space. Ask questions, search for information, post content, and interact with other OVHcloud Community members.
Discuss with the OVHcloud community