[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Help using skey with ssh




|> I'm trying to use challengeresponse/skey to login to my server via ssh. 
|> In my sshd_config file I have:
|> 
|> PasswordAuthentication no
|> #ChallengeResponseAuthentication yes - I assume this is the default since
|> "#" ...
|> UsePAM yes
|> 
|> and my /etc/pam.d/sshd looks like standard:
|> #%PAM-1.0
|> 
|> auth       required     pam_stack.so service=system-auth
|> auth       required     pam_shells.so
|> auth       required     pam_nologin.so
|> account    required     pam_stack.so service=system-auth
|> password   required     pam_stack.so service=system-auth
|> session    required     pam_stack.so service=system-auth
|> 
|> My question is how do I get sshd to stop offering me unix password as an
|> authentication option.

You might want to first look into client options.  Specifically, in your
client's ssh_config file (or whatever config file your client is reading),
use the 'PreferredAuthentications' directive to specify the order in
which various authentication methods are attempted by the client.


Hope that helps,
Michael


|> _______________________________________________
|> Pam-list mailing list
|> Pam-list redhat com
|> https://www.redhat.com/mailman/listinfo/pam-list



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]