Re: 2 factor authentication

[Dennis Breithaupt <dennisb () tetaworx de>]

Hello,

if you want to do it right and probably in an corporate environment, look at RSA or Aladdin OTP generators. We've 
tested RSA and it looks pretty well and we probably want to integrate it on a broader basis.

You have to consider the impact to your users and the increase in "complexity" during the authentication process. Also 
the administrative load at your helpdesk will raise. You have to care with unsynced or lost tokens for example.

Another option are various type of PKI-cards, but than you have the added problem of cardreaders etc. Aladdin however 
has USB-OTP-Tokens available, which might be an alternative.

However, there are open-source implementations called "OPIE", i.e. for Ubuntu, but I have no experiences with this.

Regards,

Dennis


On Tue, 22 May 2007 10:49:04 -0700 (PDT), Iosif Gasparakis <gaspar_i () yahoo com> wrote:
> Hello.
>
> Can someone provide any information/links on how to implement 2 factor
> authentication with ssh? Do I need any extra software? Is there any open
> source tool that can help?
>
> Thank you in advance.
[...]