Disallowing root logins over SSH requires system admins to authenticate using their own individual account, then escalating to root via sudo or su. This in turn limits opportunity for non-repudiation and provides a clear audit trail in the event of a security incident
Solution
Edit the /etc/ssh/sshd_config file to set the parameter as follows: PermitRootLogin no