SSH (Secure Shell) key pairs are crucial for secure server access and management. However, there may be instances where it becomes necessary to revoke and replace existing key pairs. This knowledge base provides detailed information on how to revoke SSH key pairs in WHM cPanel for enhanced security.

1. Understanding SSH Key Pair Revocation:

   • SSH key pair revocation is the process of invalidating an existing key pair to prevent further access to the server.

2. Accessing WHM for SSH Key Management:

   • Log in to WHM using your administrator credentials.

3. Navigating to SSH Key Management:

   • Locate and select 'Manage root's SSH Keys' from the WHM menu.

4. Viewing Existing SSH Key Pairs:

   • In the SSH Key Management interface, you'll see a list of existing key pairs associated with the root user.

5. Selecting the Key Pair to Revoke:

   • Identify the specific key pair that you want to revoke and click 'Delete' next to it.

6. Confirming SSH Key Revocation:

   • Confirm the action to revoke the selected key pair. This will immediately invalidate the key.

7. Adding a New SSH Key Pair:

   • Click on 'Import Key' to add a new SSH key pair for secure server access.

8. Uploading the Public Key:

   • Provide the public key content or upload the public key file to add it to the list of authorized keys.

9. Setting Key Restrictions (Optional):

   • Specify any restrictions or limitations for the new key pair, such as IP address restrictions.

10. Revoking Multiple SSH Key Pairs:

    • To revoke multiple key pairs, repeat the process for each one.

11. Understanding SSH Key Authentication:

    • Educate users on the importance of SSH key authentication and how it enhances server security.

12. Alerting Users of Revoked Keys:

    • Notify users whose keys have been revoked and provide instructions on how to add a new key.

13. Disabling Password Authentication (Optional):

    • Enhance security by disabling password authentication and requiring SSH key authentication for server access.

14. Configuring SSH Access Settings:

    • Customize SSH access settings in WHM to align with your server's security requirements.

15. Keeping a Backup of Authorized Keys:

    • Maintain a backup of authorized keys in case they need to be restored for any reason.

16. Educating Users on Key Pair Management:

    • Provide users with guidelines on how to manage their own SSH key pairs for secure server access.

17. Documenting SSH Key Revocations:

    • Keep detailed records of SSH key revocations, including dates, key details, and reasons for revocation.

18. Monitoring Server Logs for Unusual Activity:

    • Regularly review server logs for any suspicious or unauthorized access attempts.

19. Conducting Periodic Audits of SSH Keys:

    • Periodically review and audit authorized keys to ensure they align with your server's security policies.

20. Troubleshooting SSH Key Issues:

    • In case of any issues with SSH key authentication, utilize WHM's logs and error messages to identify and resolve the problem.

Conclusion:

Revoking SSH key pairs in WHM cPanel is a crucial aspect of maintaining server security and preventing unauthorized access. By following the steps outlined in this knowledge base, you can efficiently revoke and manage SSH keys, ensuring that only authorized users have access to your server. This enhances overall security and protects against potential security breaches.