Getting Started Guide
Multi-Factor Authentication
Using MFA for SSH Connections
3 min
mfa can be used for making ssh connections with any method only enabled user group users can use mfa for ssh connections to enable the user groups for mfa to set mfa usage for ssh connections make an ssh connection to kron pam from the ssh client as a root run the following commands to set the required parameters in the config file cd /u01/nssoapp/conf/ vi nsso properties to type or add anything in the vi editor, first press the insert button on the keyboard, then type in the necessary line press esc to exit typing mode check the configuration file to see if the parameters below are already configured if not, add the lines below parameters nsso connection otp enabled=true nsso otp cache enabled=true nsso otp cache seconds=300 description the first command sets the otp usage as enabled the first command sets the otp usage as enabled the second command sets otp caching, and the third sets cache value to 300 seconds it means that if users log in with otp, they will not be asked for any token for the next 300 seconds even if the user disconnects and connects again if there is a hash ( # ) sign in front of the parameters, delete the hash ( # ) to activate the parameter if the parameter value is false, change it to true to save the file, press esc, then colon ( ), and then type in wq! and press enter if you donโt want to save the changes on the file, press esc, then colon ( ), and type in q! and press enter after setting the parameters, restart nssoapp by running the following command systemctl restart nssoapp