Ping a Specific Port

Question

PhysiOS

Asked: 2016-08-29 17:53:00 +0800 CST2016-08-29 17:53:00 +0800 CST 2016-08-29 17:53:00 +0800 CST

SSH Google Authenticator Ignore/Whitelist ips

772

I installed google authenticator (two step verification), "libpam-google-authenticator" package, although it asks for a code for every single connection to SSH. I want to put localhost and my own ip whitelisted from google authenticator so I and localhost skip two step verification

Or is there a way to skip SSH challenge for certain ips?

1 Answers

Voted

PhysiOS · Answer 1 · 2017-08-31T20:31:46+08:00

Best Answer

PhysiOS

2017-08-31T20:31:46+08:002017-08-31T20:31:46+08:00

In "/etc/pam.d/sshd"

auth [success=1 default=ignore] pam_access.so accessfile=/etc/security/access-local.conf
auth required pam_google_authenticator.so

Then on "/etc/security/access-local.conf"

#localhost doesn't need two step verification
+ : ALL : 192.168.1.0/24
+ : ALL : LOCAL
+ : ALL : YOURIPHERE
#All other hosts need two step verification
- : ALL : ALL

Don't forget to restart ssh

6

SSH Google Authenticator Ignore/Whitelist ips

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?