Google Authenticator

From HackerNet
Revision as of 10:06, 30 November 2015 by Helikopter (talk | contribs) (Created page with "Med Google Authenticator kan man använda time-based one-time password (TOTP) tillsammans med sitt vanliga lösenord på sin SSH-server för att få 2-faktors-aut...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Med Google Authenticator kan man använda time-based one-time password (TOTP) tillsammans med sitt vanliga lösenord på sin SSH-server för att få 2-faktors-autentisering. Allt sker mellan server och mobil.

Installation 

sudo apt-get -y install libpam-google-authenticator
echo "#Google Authenticator $(date)" | sudo tee -a /etc/pam.d/sshd && echo "auth required pam_google_authenticator.so" | sudo tee -a /etc/pam.d/sshd
sudo sed -i 's/ChallengeResponseAuthentication no/ChallengeResponseAuthentication yes/g' /etc/ssh/sshd_config
sudo service ssh restart

Konfiguration

Logga in på det lokala konto som ska köra MFA. 

google-authenticator

Svara y, starta appen och scanna qr-koden.

Retrieved from "https://hackernet.se/index.php?title=Google_Authenticator&oldid=1315"