Re: [RCDevs Technical] Setup SSH with both Spankey and OpenOTP

341 views
Skip to first unread message

Francois Fontaine

unread,
Nov 28, 2016, 4:22:04 AM11/28/16
to rcdevs-t...@googlegroups.com
Hello,

Could you show me the webadm settings for SSH in webadm >  Object cn=SSH,dc=Clients,dc=WebADM ?



François Fontaine - RCDevs
Email: francois...@rcdevs.com
Website: http://www.rcdevs.com
*******************************************************************************
The information in this e-mail is confidential and for use by the addressee         
only. Access to this e-mail by anyone else is not authorized. If you are not         
the intended recipient, please inform the sender and erase all copies of it 
from your system. Internet communications are by default not secure. We 
cannot guarantee the integrity and origin of e-mails unless they have been 
properly digitally signed. Confidentiality e-mails can only be guaranteed if 
they are encrypted properly using a secure digital certificate. RCDevs takes 
precautions to ensure that e-mails are scanned for viruses but cannot accept 
liability for any damage sustained as a result of software viruses. 
*******************************************************************************




On 28 Nov 2016, at 04:51, Nguyễn Đức Thịnh <ducth...@gmail.com> wrote:

Dear all,
I setup RCDevs server for user to login with key from spankey and OpenOTP.
Spankey work well but I can't setup OpenOTP as a step 2 authen method.
Here is my configuration:

/etc/pam.d/sshd
auth       required     pam_sepermit.so
auth       substack     password-auth
auth       include      postlogin
auth required /usr/lib64/security/pam_openotp.so server_url="http://IP:8080/openotp/" client_id="SSH"
/etc/ssh/sshd_config
PasswordAuthentication yes
AuthenticationMethods publickey,keyboard-interactive
ChallengeResponseAuthentication yes
UsePAM yes

Thanks for reading this topic. Have nice day for you.

--
You received this message because you are subscribed to the Google Groups "RCDevs Security Solutions - Technical" group.
To unsubscribe from this group and stop receiving emails from it, send an email to rcdevs-technic...@googlegroups.com.
To post to this group, send email to rcdevs-t...@googlegroups.com.
Visit this group at https://groups.google.com/group/rcdevs-technical.
For more options, visit https://groups.google.com/d/optout.

Reply all
Reply to author
Forward
0 new messages