Yubico Forum ...visit our web-store at 2016-06-07T09:14:22+01:00 https://forum.yubico.com/feed.php?f=35&t=2334 2016-06-07T09:14:22+01:00 2016-06-07T09:14:22+01:00 https://forum.yubico.com/viewtopic.php?t=2334&p=8691#p8691 <![CDATA[yubikey + openvpn]]>
I have a working OpenVPN environment and a local yubikey validation server.
I need to have this working for non-yubikeys users as well for yubikey users.
I have this working with SSH but with OpenVPN it doesn't work the same
specifications in the /etc/pam.d/openvpn file.

this is my /etc/pam.d/openvpn file:
### YUBICO
# Call Yubikey module for users with key in /etc/yubikeyauth
auth required pam_yubico.soauthfile=/etc/yubikeyauth id=2 key=<aes key>url=<myserver> debug

so what I need is that users listed in /etc/yubikeyauth get authenticated with their password+OTP,
and users not listed there just with their password.

How can I achieve this?

Thanks!
Oscar

Statistics: Posted by oscarerbetta — Tue Jun 07, 2016 9:14 am

]]>