Yubico Forum

...visit our web-store at store.yubico.com
It is currently Tue Jan 30, 2018 12:04 pm

View unanswered posts | View active topics


Board index » Yubico Software » YubiRADIUS

All times are UTC + 1 hour




Post new topic Reply to topic  Page 1 of 1
  [ 4 posts ] 
  Print view Previous topic | Next topic 
Author Message
rambeats
PostPosted: Thu May 23, 2013 1:46 pm 
Offline

Joined: Thu May 23, 2013 10:37 am
Posts: 2
Hi,

I have configured ssh login to my remote server using publickey and yubikey together. It worked without any issue, but the scp command not functioning. It keeps struck on the command line and there is no password prompt or any other error message. Somebody please help me to resolve this issue.

Thanks
rambeats
Top
 Profile  
Reply with quote  

Share On:
Share on Facebook FacebookShare on Twitter TwitterShare on Tumblr TumblrShare on Google+ Google+

Tom
PostPosted: Thu May 23, 2013 2:06 pm 
Offline
Site Admin
Site Admin

Joined: Wed Nov 14, 2012 2:59 pm
Posts: 666
Did you checked this?
https://www.crc.id.au/2012/10/24/ssh-tw ... y-ssh-key/

_________________
-Tom
Top
 Profile  
Reply with quote  
rambeats
PostPosted: Thu May 23, 2013 4:55 pm 
Offline

Joined: Thu May 23, 2013 10:37 am
Posts: 2
Tom,

I had tried that way but it didn't work ssh with yubikey for me. There were some issues with RequiredAuthentications2 in ssh configuration.

Below link helped me to get ssh authentication with publickey and yubikey together, but the issue is only with scp.
https://www.berrange.com/posts/2011/12/ ... -together/

Do you have any idea?

Thanks
rambeats
Top
 Profile  
Reply with quote  
djdicbob
PostPosted: Sat Jun 01, 2013 11:24 pm 
Offline

Joined: Sat Jun 01, 2013 11:07 pm
Posts: 1
The link you posted is an older way to config sshd. Depending on your version of sshd, you should be able to set these config directives and get rid of the ForceCommand directive.

/etc/pam.d/ssh:
Add yubico module
Remove/comment line "auth include password-auth"

Code:
#%PAM-1.0
auth       required pam_sepermit.so
auth       sufficient     pam_yubico.so id=N authfile=/etc/sysconfig/yubikey

#auth include password-auth


/etc/sshd/sshd_config:
Ensure these directive are set. Shouldn't clash with most other sshd directives.

Code:
Protocol 2
RequiredAuthentications2 publickey,keyboard-interactive
ChallengeResponseAuthentication yes
UsePAM yes


My output looks like this

Code:
[root@admin1a.domain ~]$ scp RHEL-6.2-x86_64-kvm.cfg admin1b.domain:
Authenticated with partial success.
Yubikey for `root':
RHEL-6.2-x86_64-kvm.cfg             100% 1460     1.4KB/s   00:00
Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  Page 1 of 1
  [ 4 posts ] 

Board index » Yubico Software » YubiRADIUS

All times are UTC + 1 hour


Who is online

Users browsing this forum: No registered users and 1 guest

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group