17 Jan
2023
17 Jan
'23
9:33 a.m.
Bastian Tweddell wrote:
Dear all,
I am investigating if it is possible to use the TOTP overlay in the following concept:
Many thanks for any
- nis related data of users are in ldap
- user ssh access to the system is pubkey only
- after successful authentication also request TOTP via PAM call to slapd (only TOTP, no password)
Does this make sense and can this be achieved?
Sounds more like a question for your SSH server, and whether you can configure it to use PAM after a successful pubkey authentication.
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/