diff --git a/user_data b/user_data
index efe9dea188ebf639a0ccd3b1bce59c34ec16c31c..f1aa577230c0a8d31de88784763e6e13c2e5de3d 100644
--- a/user_data
+++ b/user_data
@@ -1,6 +1,17 @@
 #cloud-config
 
 write_files:
+  - path: /etc/ssh/sshd_config
+    permissions: 0600
+    owner: root:root
+    content: |
+      # Use most defaults for sshd configuration.
+      UsePrivilegeSeparation sandbox
+      Subsystem sftp internal-sftp
+      PermitRootLogin no
+      AllowUsers core
+      PasswordAuthentication no
+      ChallengeResponseAuthentication no
   - path: /etc/sysctl.d/libresh.conf
     permissions: 0644
     owner: root