Skip to main content

How to Enable or Disable SSH on VMware ESXi via Web GUI, vSphere Web GUI (vCenter), vSphere Client and Shell Console

Article Reads:32882

SSH access to VMware’s ESXi server is by disabled by default however there are many reasons where SSH might be required. VMware and System administrators often find the need to perform advanced administrative tasks that require SSH access to the ESXi host. For example, deleting or reloading a VM with an Invalid Status can only be performed via SSH.

In this article, we’ll show you how to enable SSH on your ESXi host with just a few simple steps. This task can be achieved via the ESXi Web GUI, vSphere Web GUI (vCenter) vSphere client or ESXi console. We’ll cover all three methods.

Execution Time: 5 minutes

Security Tip: If your ESXi host management IP is not protected or isolated from the rest of the network, it is advisable to enable SSH on an as-needed basis.

Enabling and Disabling SSH Console on VMware ESXi via Web GUI

Log into your ESXi server and select the host from the Navigator window. Next, go to Action > Services and select the Enable Secure Shell (SSH) menu option:

vmware esxi enable ssh

This will immediately enable SSH. To disable SSH, repeat the same steps. You’ll notice that the Disable Secure Shell (SSH) option is now available:

vmware esxi disable ssh

Enabling and Disabling SSH on VMware via vSphere Web GUI Client (vCenter)

For those with a VMware vCenter environment, you can enable SSH for each ESXi host by selecting the host and then going to Manage > Settings > Security Profile > Edit.  In the pop-up window, scroll down to SSH Server and tick it. Optionally enter the IP address or network(s) you require to have SSH access to the host:

vmware esxi enable ssh vsphere web gui

Enabling and Disabling SSH on VMware ESXi via vSphere Client

Launch your vSphere client and log into your ESXi host. From vSphere, click on the ESXi host (1), then select the Configuration tab (2). From there, click on the Security Profile (3) under the Software section. Finally click on Properties:

vmware esxi enable ssh via vsphere client

On the pop-up window, select SSH and click on the Options button: vmware esxi enable ssh via vsphere client remote access

Select the required Startup Policy. Note that the ‘Start and stop with host’ option will permanently enable SSH. Next, click on the Start button under Service Commands to enable SSH immediately. When done, click on the OK button:

vmware esxi enable ssh via vsphere client start stop

To disable the SSH service via vSphere, follow the same process as above and ensure you select the “Start and stop manuallyStartup Policy option and click on the Stop button under the Service Commands section.

Enabling and Disabling SSH Console on VMware ESXi via ESXi Console

From your ESXi console, hit F2 to customise the system:

vmware esxi enable ssh via console

At the prompt, enter the ESXi root user credentials:

vmware esxi enable ssh via console

At the next window, highlight Troubleshooting Options and hit Enter:

vmware esxi enable ssh via console

Next, go down to the Enable SSH option and hit Enter to enable SSH: vmware esxi enable ssh via console

Notice that ESXi is now reporting that SSH is enabled:

vmware esxi enable ssh via console 5

Now hit Esc to exit the menu and logout from the ESXi host console.

Summary

In this article we showed how to enable and disable the SSH service on a VMware ESXi host using the Web GUI, vSphere client and ESXi Console. We explained why the SSH service is sometimes required to be enabled and also noted the security risks in permanently enabling SSH.

Your IP address:

44.222.134.250

All-in-one protection for Microsoft 365

All-in-one protection for Microsoft 365

Free NIS2 Compliance Directive Webinar

EU Network and Information Security (NIS2) Compliance Directive

FREE Hyper-V & VMware Backup

FREE Hyper-V & VMware Backup

Wi-Fi Key Generator

Generate/Crack any
WEP, WPA, WPA2 Key!

Network and Server Monitoring

Network and Server Monitoring

Follow Firewall.cx

Cisco Password Crack

Decrypt Cisco Type-7 Passwords on the fly!

Decrypt Now!

Bandwidth Monitor

Zoho Netflow Analyzer Free Download

Free PatchManager

Free PatchManager

EventLog Analyzer

ManageEngine Eventlog Analyzer

Security Podcast

Hornet-Security-The-Swarm-Podcast

Firewall Analyzer

zoho firewall analyzer