Re: two-factor auth for Fedora in "the cloud?"

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Right, the AWS two factor auth is just for access to their stuff and
not at all related to instance auth.

You basically want anything that can be used for two factor auth in
Fedora?  The Yubikeys should work (http://www.yubico.com/yubikey) and
I also vaguely remember that Google released a library with a pam
module for their two factor auth a few months ago although I'm not
finding a link to it in a quick check

- Jeremy

On Fri, Jan 28, 2011 at 4:42 PM, Brian LaMere
<brian@xxxxxxxxxxxxxxxxxxxx> wrote:
> Anyone have luck setting up two-factor auth for Fedora in "the Cloud" -
> preferably, at AWS? ÂYes, I got one of the token generators discussed
> atÂhttp://aws.amazon.com/mfa/
> However, those only appear to help with authentication to (per the faq):
>
> Secure pages on theÂAWSÂPortal (http://aws.amazon.com)
> AWSÂManagement Console (https://console.aws.amazon.com)
>
> What if I need to multi-factor auth to the instances themselves? ÂAnyone
> know if there's a service out there that does this for Fedora (or RedHat,
> which can easily be made to work for...) instances in the "cloud?"
> I'm used to doing this locally and then making the remote systems only allow
> access via a limited number of machines (which themselves do 2-factor). ÂI'm
> now in a situation though with every workstation being outside the trust
> zone completely, VPN not being something that could change that (too many
> details...), and thus needing to accomplish the 2-factor in the cloud
> itself. ÂMost of the results from "two factor authentication cloud" I get
> are about cloud-based providers authenticating the local machines...versus
> what I need, which is a service that I can auth cloud-based machines against
> for the second factor. ÂI know of many industries that would *have* to have
> a 2-factor solution to use cloud instances, so surely my google-fu is just
> not working...anyone gone down this road themselves yet?
> Brian
> _______________________________________________
> cloud mailing list
> cloud@xxxxxxxxxxxxxxxxxxxxxxx
> https://admin.fedoraproject.org/mailman/listinfo/cloud
>
>
_______________________________________________
cloud mailing list
cloud@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/cloud
[Index of Archives]     [Fedora General Discussion]     [Older Fedora Users Archive]     [Fedora Advisory Board]     [Fedora Security]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [ATA RAID]     [Fedora Marketing]     [Fedora Mentors]     [Fedora Package Announce]     [Fedora Package Review]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Coolkey]     [Yum Users]     [Big List of Linux Books]     [Yosemite News]     [Linux Apps]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Asterisk PBX]

  Powered by Linux