The password authentication method is the easiest to implement, as it is enabled by default. Password authentication uses the RACF system password of the user.

To allow password authentication, make sure that the AllowedAuthentications keyword of the /opt/tectia/etc/sshd2_config configuration file on the server contains the argument password:

AllowedAuthentications   password

Other authentication methods can be listed in the configuration file as well.

To allow the users to change expired passwords, uncomment the following line in the /opt/tectia/etc/sshd2_config file:

AuthPassword.ChangePlugin ssh-passwd-plugin

	Note
	With passwords, it is also possible to use Keyboard-Interactive authentication. See User Authentication with Keyboard-Interactive for more information.