[Freeipa-users] key+OTP to SSH into publicly exposed redHat instances
Deepak Dimri
deepak_dimri at hotmail.com
Thu Aug 11 06:40:54 UTC 2016
Hi All,
I want to protect my publicly exposed AWS EC2 instances with SSH key and OTP. I have my freeIPA v4 all up and running. I am able to SSH in to my IPA clients with my private key however i want to include OTP into this login process. I have enabled OTP for one test user in my FreeIPA and i am able to login with password+OTP using browser admin URL BUT how do i challenge the same user for OTP when trying to SSH login into RedHat?
I have tried adding this in my freeIPA server /etc/ssh/sshd_config but no luck - do not get challenged for OTP when using SSH.
ChallengeResponseAuthentication yes
UsePAM yes
AuthenticationMethods publickey,keyboard-interactive
PasswordAuthentication no
Thanks in Advance,Deepak
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20160811/95565777/attachment.htm>
More information about the Freeipa-users
mailing list