Something is not clear to me with SSH authentication.

I have a Talend job which connects to sFTP (using SSH protocol) and on the property page of the component, I have the choice between: 1. Password authentication 2. Public key authentication

When I choose Password authentication the data to enter are username and password. but when I choose Public key authentication the data to enter are username, password, private key path and private key passphrase.

I though when a public key authentication is set on a server there is no need for a password.

Is the SSH enables an authentication using public key and password in the same time as a security enforcement or it is just a fallback which means if the public key is not authorized, the standard username/password will be used (if the sshd server permits it)?

Something is not clear to me with SSH authentication.

I have a Talend job which connects to sFTP (using SSH protocol) and on the property page of the component, I have the choice between: 1. Password authentication 2. PublicKey authentication

When I choose Password authentication the data to enter are username and password. but when I choose PublicKey authentication the data to enter are username, password, private key path and private key pass-phrase.

I though when a PublicKey authentication is set on a server there is no need for a password.

Is the SSH enables an authentication using a public key and a password in the same time as a security enforcement or it is just a fallback which means if the public key is not authorized, the standard username/password will be used (if the sshd server permits it)?