Counting multiple authenticate factors in pam
Orion Poplawski
orion at nwra.com
Wed Feb 7 18:24:07 UTC 2018
Just a crazy idea - what if there was a pam variable like "numfactors" that
modules could increment? That way pam_google_authenticator could increment it
by one, and pam_sss could increment it by one for password and two for
smartcard+PIN. Then at the end you could require numfactors to be a certain
number (generally 2).
Too much of an api change? Any other way to shoehorn this in?
--
Orion Poplawski
Manager of NWRA Technical Systems 720-772-5637
NWRA, Boulder/CoRA Office FAX: 303-415-9702
3380 Mitchell Lane orion at nwra.com
Boulder, CO 80301 https://www.nwra.com/
More information about the Pam-list
mailing list