Dark Training. Tags | centos | 2factor | security | linux I just wanted to post this because I saw some sites incorrectly stating that you need to install the epel repo, you don't.
Here is how to install the Google 2 factor application for pam yum install gcc gcc++ make python python-devel git pam-devel cd /tmp git clone cd google-authenticator/libpam make make install cd /tmp rm -Rf google-authenticator/ To enable ssh 2 factor: sed -i '1 a\ auth required pam_google_authenticator.so' /etc/pam.d/sshd Make sure that challenge response is listed as YES in your SSHD config ...ChallengeResponseAuthentication yes Login as the user you want to protect and run: google-authenticator nswer the questions as appropriate.
TADA! *If you get a loop of asking for your password and verification code, you need to modify SELINUX to allow or disable it. Blog. We are glad to present Rohos Logon Key v.3 (for Mac OS X) with multiple authentication methods support.
Now it is possible to setup USB drive or any smartphone as a key for your Mac and use all of them at any time. Rohos Logon Key allows to use USB stick, any mobile phone or Yubikey to login and unlock Mac without using password. Read the rest of this entry » June 30th, 2014 in MAC OS-X, News | Comments Off Sometimes is necessary to provide a user the automatically logon in Windows without using of any key and password.
Windows 8 allows you to login without writing a password, although it was assigned. For example, we’ve created a user account User321, and assigned a password for it. Run please Rohos Logon Key application and create a key for Admin: Read the rest of this entry » June 26th, 2014 in Rohos Logon Key, Solutions | Comments Off Very often we need to share some files and folders, situated on local computer or on terminal server. There are two possible cases: Your security benefits: 1. How to use Google Authenticator for sshd/OSX « VietCoders. I was interested in Google Authenticator one month ago, if you don't know what Google Authenticator is, check this description (1): The Google Authenticator project includes implementations of one-time passcode generators for several mobile platforms, as well as a pluggable authentication module (PAM).
One-time passcodes are generated using open standards developed by the Initiative for Open Authentication (OATH) (which is unrelated to OAuth). Google Authenticate can turn your mobile phone to an one-time-password (OTP) token. That means, beside your own password, you must provide a number from your phone to login to your system. Some applications have integrated Google Authenticator like Google Apps, LastPass, WordPress... After some searches, I understood that Google Authenticator has not supported OSX officially. 1. You can use hg to grab the source code (3). Hg clone --insecure.
Multi-Factor Authentication With SSH on OS X - techorganic.com. This is a quick guide on how to setup multi-factor authentication with SSH using Google Authenticator.
The goal is to require three items from the user in order to complete the authentication: SSH authentication keys, the user’s password, and a one-time password using Google Authenticator. This guide was tested with OS X 10.9 (Mavericks). Your mileage may vary if you try it on older releases. You’ll need to have OpenSSH 6.2 installed. This requirement is necessary for multiple authentication methods using the AuthenticationMethods option. Next you’ll need to have Xcode installed, or at least the command line utilities. Xcode is needed to build the Google Authenticator PAM module, which you should download from The following commands will unpack and build the PAM module, and the google-authenticator program: You’ll get a couple of warnings but it should build without any errors. Next, add an entry for it in /etc/pam.d/sshd: Restart sshd so the new configuration takes effect: That looks good.
Downloads - google-authenticator - Two-step verification. Unified Identity Services Across Data Center, Cloud and Mobile. Tokenless Authentication by SecurEnvoy.