| Yubico Forum https://forum.yubico.com/ |
|
| Yubikey + NoMachine (neatx) https://forum.yubico.com/viewtopic.php?f=5&t=599 |
Page 1 of 1 |
| Author: | Pandemonium [ Tue Nov 23, 2010 9:37 am ] |
| Post subject: | Yubikey + NoMachine (neatx) |
I just finished configuring SSH on my Ubuntu 10.10 64bit desktop to use my Yubikey via PAM. This is tested and working. I regularly connect to this machine using NoMachine, and it is running the Neatx server. This was installed using these instructions: http://www.ubuntugeek.com/how-to-instal ... -lynx.html I assumed that once SSH was using my Yubikey that NoMachine would also require my Yubikey. They both use port 22, and I thought that NoMachine was tunneling through SSH. Apparently I'm wrong somehow. SSH required me to enter my password + yubikey OTP; however, NoMachine only works with my password. It's as if I never configured the Yubikey. If I enter the OTP, my login fails. If I enter just my password, it works. I would appreciate any hints or information to get NoMachine/Neatx to require my Yubikey OTP. Thanks! |
|
| Author: | Pandemonium [ Wed Nov 24, 2010 5:28 am ] |
| Post subject: | Re: Yubikey + NoMachine (neatx) |
I found this information on user authentication in NX: http://www.nomachine.com/ar/view.php?ar_id=AR02C00150 From the article: --- To verify the password, NX will submit the user's credentials to the SSH subsystem. If SSH guarantees the access, then NX will allow the user to enter the session. --- It seems like NX should be authenticating using the yubikey if SSH is. I'd appreciate any help or input. |
|
| Author: | bastichelaar [ Thu Dec 30, 2010 12:08 pm ] |
| Post subject: | Re: Yubikey + NoMachine (neatx) |
Did you find a solution for this? |
|
| Author: | bastichelaar [ Thu Dec 30, 2010 1:05 pm ] |
| Post subject: | Re: Yubikey + NoMachine (neatx) |
Never mind, I found a solution already! It seems that Nomachine expects the password prompt to be Quote: Password: and not Quote: Yubikey `$USERNAME`: So I modified the source of pam_yubikey.c a little, and voila, it's working!
|
|
| Page 1 of 1 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|