Difference between revisions of "Authentification"
From Blue-IT.org Wiki
(→Personalisation Tool) |
|||
| Line 15: | Line 15: | ||
[[Image:Yubi_unity.png]] | [[Image:Yubi_unity.png]] | ||
| + | |||
| + | |||
| + | === Owncloud === | ||
| + | |||
| + | Two-factor authentication for ownCloud using one-time passwords (OTP) from Yubikey: | ||
| + | |||
| + | * http://www.sj-vs.net/two-factor-authentication-for-owncloud-using-one-time-passwords-otp-from-yubikey/ | ||
| + | |||
| + | One Time Password Backend: | ||
| + | |||
| + | * https://apps.owncloud.com/content/show.php/One+Time+Password+Backend?content=159196 | ||
| + | |||
== SSH == | == SSH == | ||
Revision as of 07:19, 19 August 2015
Yubikey
Please read and make yourself familiar with OTP and the concept or Two Factor Authentification.
Personalisation Tool
You can use a ppa to install the required software in Ubuntu:
- https://launchpad.net/~yubico/+archive/ubuntu/stable
- https://www.yubico.com/products/services-software/personalization-tools/use/
sudo apt-get install yubikey-personalization yubikey-personalization-gui yubikey-neo-manager yubioath-desktop ykneomgr
Owncloud
Two-factor authentication for ownCloud using one-time passwords (OTP) from Yubikey:
One Time Password Backend:
SSH
Generally: only use key based authentification with your ssh-webserver login!
vim /etc/ssh/sshd_config
[...] PermitRootLogin without-password StrictModes yes RSAAuthentication yes PubkeyAuthentication yes IgnoreRhosts yes RhostsRSAAuthentication no HostbasedAuthentication no PermitEmptyPasswords no ChallengeResponseAuthentication no PasswordAuthentication no # <<<< !!!! X11Forwarding no UseLogin no UsePAM no <<<< !!!!