In order to manage Shell access to all accounts on the server, the user is required to follow the given steps:
WHM>> Home>> Account Functions>> Manage Shell Access
This interface lets you control the accounts that can have access to your server distantly from the line of command. Even though most users demand this kind of access, make sure that you weigh the risks before granting complete shell access to users. It is recommended that in order to reduce the scope of execution of harmful guidelines, you allow only jailed shell admission to users. Also it lets you speed up certain tasks in addition to allowing you to carry out certain function that cannot be done within your cPanel.
Depending upon the accessibility, shell access has to be handled in two ways:
You can select this option to give users entry to jailed shell. This confines the users’ capacity to run certain commands that might lead to adverse effects on the server.
This gives the user entry to the shell without any limitations.
You can use this option to refuse shell access to the user.
A user with a disabled shell can use SFTP only if you enable it. But you can disable an account’s capacity to use SFTP, all you have to do is set/bin/false as the user’s shell. To disable SFTP you have to run the command “usermod –s /bin /false username” as the root user in which case “username” indicates the account name for which you wish to disable SFTP.
Note that if the account has shell access or not is determined by the account’s package. The system will fix the value for the account’s package as undefined in the account’ userdata file in case you wish to alter the account’s authorization to gain entry to a shell.
All details and essential information regarding shell access has been included in this article.