Highest Voted 'two-factor' Questions - Server Fault Stack Exchange

30

votes

7 answers

SSH: Two Factor Authentication

I currently have a Ubuntu Server 12.04 running OpenSSH along with Samba and a few other services. At the current time I have public key authentication set up, and I'm wondering if it's possible to set up two factor authentication? I've been looking…

asked Jul 20 '12 at 03:17

Concrete Donkey

435
5
8

28

votes

3 answers

Trying to get SSH with public key (no password) + google authenticator working on Ubuntu 14.04.1

I'm using Ubuntu 14.04.1 (with OpenSSH 6.6 and libpam-google-authenticator 20130529-2). I'm trying to set up SSH logins where the public key authenticates (without a password) and a user is prompted for a code from Google's…

ubuntu ssh two-factor google-authenticator

asked Sep 19 '14 at 15:42

JT.

383
1
3
6

15

votes

2 answers

Two Factor SSH Authentication on external address only

I have an Ubuntu server with both a private, internal, IP and a public-facing IP. I want to set up two-factor authentication for SSH on just the public side. Is this possible? I was planning on using Google Authenticator, but am open to alternative…

ssh two-factor

asked Jun 26 '13 at 17:04

Brett F.

253
1
2
6

13

votes

2 answers

SSH Two-Factor auth (2FA) with a yubikey

I have got this slick little yubikey and I want to add an additional layer of security when authenticating ssh sessions. On the server side I've already disabled password authentication and only permit the use of ssh keys when logging in. The…

ssh two-factor yubikey

asked Dec 10 '15 at 03:51

ben lemasurier

768
6
21

9

votes

1 answer

Ansible - Access through Bastion w/ MFA

In my current environment, I have all my Linux servers only accessible through a bastion host, which has MFA enabled. I've managed to get Ansible to successfully talk to servers through the bastion, the only problem is that it establishes a new…

ansible configuration-management two-factor bastion

asked Feb 29 '16 at 17:10

Paul Kirby

191
3

7

votes

1 answer

Combination of SSH key auth, and two-factor authentication

I was wondering if it is possible to accomplish the following, all at the same time: Disable root logins Enable SSH login for personal user, only via SSH keys Enable SSH login for unprivileged user, with password authentication and two-factor…

ssh password pam two-factor

asked Mar 02 '14 at 20:02

Brandon

191
2
6

7

votes

2 answers

Keeping Private SSH Keys Safe

I have a central server where I stored all the private ssh keys to the different machines that I want to ssh to. Currently, only sysadmins have access to this 'central' server. Given the above scenario, I like to ask the following questions: How do…

ssh two-factor

asked Jan 28 '12 at 05:47

Carmen

807
3
11
13

7

votes

5 answers

Two Factor Authentication on EC2

I need to host stuff for a financial institution on EC2. The bank wants complete Two Factor Authentication so Stuff like having SSH with a key with password. Something like SecureID or similar would be great. How can I effectively create two factor…

security amazon-ec2 authentication two-factor

asked Jan 17 '11 at 07:24

Stewart Robinson

1,155
4
12
24

5

votes

5 answers

looking for opensource 2 factor authentication server

i'm looking for opensource 2 factor authentication service. (Right now we're using openLDAP.) We're just using Linux Servers. That's why the service should work well with PAM Linux. It would also be nice to have 2 factor authentication support for…

authentication two-factor

asked Sep 18 '11 at 16:25

JMW

1,463
4
19
27

5

votes

2 answers

SSH public key authentication with google authenticator still asks for password

I'm trying to enable 2FA with ssh using libpam-google-authenticator. Not all users need authenticator enabled. Everybody uses ssh public keys, and nobody has a password. I'm running Debian buster, and I've also tried libpam-google-authenticator from…

debian pam google-authenticator two-factor

asked Aug 05 '21 at 07:28

Hamish Moffatt

201
2
11

4

votes

0 answers

Setup 2FA/MFA on Jenkins

I'm trying to find how to setup 2FA/MFA on users who login to Jenkins, with Google Authenticator. Everything I'm finding is about logins to servers/git/etc, but not for the actual USERS in Jenkins. Does anyone know how to do this?

security jenkins continuous-integration two-factor two-factor-authentication

asked Apr 11 '20 at 11:16

Nuno

553
2
8
26

3

votes

4 answers

PAM, RADIUS, Google Authenticator and Two Factor Auth

I have setup FreeRADIUS, PAM and the Google Authtenicator. FreeRADIUS calls PAM, which in turn calls the Google pam_google_authenticator.so libary. That all works successfully. However, that's not really 2 factor auth, as all one needs is the OTP…

centos authentication pam two-factor

asked Dec 29 '14 at 20:39

Jeff Leyser

682
6
19

3

votes

2 answers

freeradius two factor without factor concatenation

I have a cisco router providing an SSL VPN server which is talking to freeradius, which in turn uses pam and two pam modules (sss & yubico) to provide two factor authentication for the VPN. All is good in the world and it does work, except that for…

authentication freeradius two-factor

asked Apr 28 '14 at 02:12

Sirex

5,499
2
33
54

3

votes

1 answer

Implementing a form of port knocking + Phone Factor = 2 Factor auth for RDP?

I have been looking into how to secure a publicly-available RDP endpoint and want to implement our two-factor authentication RADIUS server, PhoneFactor. I would like to implement the following process: User opens up web app in browser In web app,…

firewall authentication port rdp two-factor

asked Sep 04 '12 at 21:30

tacos_tacos_tacos

3,250
18
63
100

3

votes

1 answer

Is RSA's SecureID anyless secure in light of the attacks exploiting them?

Additionally, is two-factor authentication in general less secure, and if so, why?

security rsa two-factor

asked Jun 04 '11 at 01:23

blunders

813
7
14
30

Questions tagged [two-factor]