If you want to give someone permission to login directly to the root login account via Secure Shell, you can define three methods of control in the sshd2_config file:

PermitRootLogin     no

This will disable all logins with root privileges. To enable root logins with any authentication method, use the following setting:

PermitRootLogin     yes

You can limit the authentication methods by using the following setting:

PermitRootLogin     nopwd

This allows root logins only when an authentication method other than password is used.

It is also possible to create a separate subconfiguration file for root. See Defining Subconfigurations for more information.