> Ubuntu

Ubuntu

You can set up Ubuntu two-factor authentication with Protectimus using the RADIUS protocol:
  1. Get registered with Protectimus SAAS Service or On-Premise Platform and configure basic settings.
  2. Install and configure Protectimus RProxy.
  3. Configure Ubuntu Settings.

1. Get Registered and Configure Basic Protectimus Settings

  1. Register with the Protectimus Cloud Service and activate API or install the Protectimus On-Premise Platform (if you install Protectimus Platform on Windows, check the RProxy box during the installation).
  2. Add Resource.
  3. Add Users.
  4. Add Tokens or activate Users’ Self Service Portal.
  5. Assign Tokens to Users.
  6. Assign Tokens with Users to the Resource.

2. Install and Configure Protectimus RProxy

Detailed instructions for installing and configuring the Protestimus RProxy component are available here.

3. Configure Ubuntu Settings

apt install libpam-radius-auth vim /etc/pam_radius_server.conf
# server[:port]    shared_secret      timeout (s)
127.0.0.1          secret             1
IMPORTANT! Use your platform IP instead of 127.0.0.1

SSH

vim /etc/sshd/sshd_config
ChallengeResponseAuthentication yes

Local authentication + OTP via Protectimus

vim /etc/pam.d/ssh
# Standard Un*x authentication.
@include common-auth

auth    required    pam_radius_auth.so

rproxy.properties
primary-authenticator = NOOP

Authentication + OTP via Protectimus

vim /etc/pam.d/ssh
# Standard Un*x authentication.
#@include common-auth

auth    required    pam_radius_auth.so

rproxy.properties
primary-authenticator = PROTECTIMUS

GUI

/etc/pam.d/gdm-password
auth required pam_radius_auth.so
Last updated on 2022-02-07