|
|
|
|
|
|
by antoncohen
4764 days ago
|
|
|
The latest version of OpenSSH (6.2) has added the AuthenticationMethods configuration option which allows you to specify multiple required methods, like publickey + password. With UsePAM 'password' should be passed to PAM, and in turn Google Authenticator (which would be like 3-factor auth). [1] Red Hat added a similar though slightly different patch with RequiredAuthentications1 and RequiredAuthentications2. They patched OpenSSH 5.3 in RHEL 6 (and CentOS) as of 2012-06-20. [2] So instead of Google Authenticator you could use publickey + password for 2-factor auth. [1] https://bugzilla.mindrot.org/show_bug.cgi?id=983 [2] https://bugzilla.redhat.com/show_bug.cgi?id=657378 |
|
|