Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Require 2FA for SSH access #408

Open
aneeshusa opened this issue Jun 27, 2016 · 1 comment
Open

Require 2FA for SSH access #408

aneeshusa opened this issue Jun 27, 2016 · 1 comment
Labels
enhancement
Milestone
Infra Security

Comments

@aneeshusa
Copy link
Contributor

Inspired by #399. Essentially blocked by #253 and #254.

This can be done on Linux via PAM (see https://wiki.mozilla.org/Security/Guidelines/OpenSSH#Multi-Factor_Authentication_.28OpenSSH_6.3.2B.29 for example). I'm not sure about how to do this on OS X - suggestions welcome.
@aneeshusa
Copy link
Contributor Author

To be more clear, when I say 'via PAM' I mean using Google Authenticator via PAM. I would not feel comfortable using a third-party service (e.g. Duo) in our SSH login path and would prefer to stick to TOTP or another self-contained service.

@edunham edunham modified the milestones: Salt Best Practices, Infra Security Jul 14, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
Infra Security
Development

No branches or pull requests
2 participants
@edunham @aneeshusa