The initial implementation of TrueNAS SCALE rootless log in permits users to use the root user but encourages users to create the local administrator account when first installing SCALE.
Starting with SCALE Bluefin 22.12.0, root account logins are deprecated for security hardening and to comply with Federal Information Processing Standards (FIPS). All TrueNAS users should create a local administrator account with all required permissions and begin using it to access TrueNAS.
Creating an SSH Connection Manually Configuring an SSH Connection Adding a Public SSH Key to the TrueNAS Admin User Account Generating SSH Keypairs The SSH Connections and SSH Keypairs widgets on the Backup Credentials screen display a list of SSH connections and keypairs configured on the system. Using these widgets, users can establish Secure Socket Shell (SSH) connections.
To begin setting up an SSH connection, go to Credentials > Backup Credentials and click the Add button on the SSH Connections widget.
SSH Connection and Keypairs Widgets SSH Connections Screens Name and Method Settings Authentication Settings - Semi-Automatic Method Authentication Settings - Manual Method More Options Settings SSH Keypairs Widget SSH Keypairs Screen The Backup Credentials screen displays the SSH Connections and SSH Keypairs widgets.
SSH Connection and Keypairs Widgets The SSH Connections and SSH Keypairs widgets display a list of SSH connections and keypairs configured on the system.
The SSH Connections widget allows users to establish Secure Socket Shell (SSH) connections.
Rsync Basic Requirements Creating an Rsync Task Creating an Rsync Task Using SSH Mode (Recommended) Creating an Rsync Task Using Module Mode You often need to copy data to another system for backup or when migrating to a new system. A fast and secure way of doing this is by using rsync with SSH.
Rsync Basic Requirements For a remote sync (rsync) task to work you need to first:
Add and Edit Rsync Task Screens Source and Remote Settings Schedule and More Options Settings The Rsync Task widget on the Data Protection screen lists rsync tasks configured on the TrueNAS system.
The Rsync Tasks widget displays No Rsync Tasks configured before you add a task.
Add opens the Add Rsync Task screen.
Each rsync task is a link to open the Edit Rsync Task screen.
The widget displays the status of a task as PENDING, RUNNING, SUCCESS or FAILED.
Configuring SSH Service Configuring Advanced SSH Settings Using SSH File Transfer Protocol (SFTP) Using SFTP Connections The SSH service lets users connect to TrueNAS with the Secure SHell Transport Layer Protocol. When using TrueNAS as an SSH server, the users in the network must use SSH client software to transfer files with SSH.
Allowing external connections to TrueNAS is a security vulnerability! Do not enable SSH unless you require external connections.
SSH Basic Settings Options SSH Advanced Settings Options The System Settings > Services > SSH screen allows you to set up SSH service on TrueNAS SCALE.
Click edit to open the Services > SSH configuration screen.
Allowing external connections to TrueNAS is a security vulnerability! Do not enable SSH unless you require external connections. See Security Recommendations for more security considerations when using SSH. SSH Basic Settings Options The Basic Settings options display by default when you edit the SSH service.
About SCALE 2FA Benefits of 2FA Drawbacks of 2FA Enabling 2FA Disabling or Bypassing 2FA Reactivating 2FA Using 2FA to Log in to TrueNAS Logging In Using the Web Interface Logging In Using SSH Global Two-factor authentication (2FA) is great for increasing security.
TrueNAS offers global 2FA to ensure that entities cannot use a compromised administrator root password to access the administrator interface.
Advanced settings have reasonable defaults in place.
