Using RSA certificate will increase your account/server security. You can configure SSH server to only accept RSA certificate for your root user. Here is how to use certificates for authentications.
On your local system (laptop/workstation/etc)
First we will create the certificate on your local system.
Generating public/private rsa key pair.
Enter file in which to save the key (/home/john/.ssh/id_rsa):
/home/john/.ssh/id_rsa already exists.
Overwrite (y/n)? y
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/john/.ssh/id_rsa.
Your public key has been saved in /home/john/.ssh/id_rsa.pub.
The key fingerprint is:
The key’s randomart image is:
Now your certificate have been created, and stored in your home folder/.ssh/id_rsa
Now we need to copy/install the certificate on the remote system.
On your local system: (when copying the certificate to the remote account it will ask for your password on the remote system)
john@debian7-dev:~$ ssh-copy-id email@example.com
Now try logging into the machine, with "ssh ‘firstname.lastname@example.org’", and check in:
to make sure we haven’t added extra keys that you weren’t expecting.
Then you are ready to log on to the remote system as john without using passwords.