Two factor definition:
1. something you have (ssh private key)
2. something you know (your account password)
On Ubuntu
/etc/ssh/sshd_config
# Require public key and password by default
PasswordAuthentication yes
AuthenticationMethods publickey,password
# Allow deploy and git groups to log in without password
Match Group deploy,git
PasswordAuthentication no
AuthenticationMethods publickey
Restart sshd
When you ssh to the server you'll be prompted for your passphrase and then again for your password.
No comments:
Post a Comment