Getting Started Guide
Multi-Factor Authentication (M...
Using MFA for SSH Connections
mfa can be used to establish ssh connections with any method only enabled user group users can use mfa for ssh connections to enable the user groups for mfa, refer to docid\ dr0nbads6k6qt3euzkua1 to set up mfa use for ssh connections establish an ssh connection to kron pam from the ssh client as root run the following commands to set the required parameters in the config file cd /pam/gui/ssh/conf/ vi nsso properties to type or add anything in the vi editor, first press the insert button on the keyboard, then type in the necessary line press esc to exit typing mode check the configuration file to see if the parameters below are already configured if not, add the lines below parameters description nsso connection otp enabled=true nsso otp cache enabled=true nsso otp cache seconds=300 the first command sets otp use as enabled the second command sets otp caching, and the third sets cache value to 300 seconds it means that if users log in with otp, they will not be asked for any token for the next 300 seconds, even if the user disconnects and connects again if there is a hash (#) sign in front of the parameters, delete the hash (#) to activate the parameter if the parameter value is false, change it to true to save the file, press esc, then a colon ( ) then type in wq! and press enter if you do not want to save the changes on the file, press esc, then a colon ( ), type in q! and press enter after setting the parameters, restart nssoapp by running the following command systemctl restart pam ssh