![]() ![]() You can get the CLIENT_ID parameter value at pathToMappingFile is the path to the mapping file (/var/yubico_passwd).ĥ – Open /etc/ssh/sshd_config and set the following parameters: PubkeyAuthentication noĦ – Then restart the server using the ssh command: sudo service ssh restartįrom now on, during authorization, the user should be asked for the YubiKey code. The file should contain a single record: :Ĥ – Open /etc/pam.d/sshd and add to the very beginning: auth required pam_yubico.so id=CLIENT_ID debug authfile=pathToMappingFile with 3 Yubikey tokens: pam_user:cccccchvjdse:cccccchvtbdr:ccccccundggrģ – Create a mapping file, e.g. If you have several Yubikey tokens for one user, add YubiKey token ID of the other devices separated with :, e.g. Where username is the name of user who is going to authorize with YubiKey, and YubiKey token ID is a user's YubiKey token identification, e.g.: pam_user:cccccchvjdse
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |