On Mon, 2015-05-18 at 18:52 +0200, Nikos Mavrogiannopoulos wrote: > > Hi, > I would be surprised if you couldn't use the PAM backend to require two > passwords, a static and TOTP. If you can make your login in your system > to ask 2FA then you can do ocserv as well (for HOTP/TOTP at least, U2F > is another story). Isn't there a Google-authenticator PAM module? --?dwmw2 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 5691 bytes Desc: not available URL: <http://lists.infradead.org/pipermail/openconnect-devel/attachments/20150518/40926dc9/attachment.bin>
