Tag Archives: 2 factor authentication

Home »  Tag: 2 factor authentication

PCI-DSS 3.2 has one major new requirement which is 2-factor authentication. There are many ways to get that done in an Enterprise environment. But how about a standalone webserver for E-commerce or DMZ without central auth? When a ssh-key authentication is not enough, the quickest solution for a server could be to make ssh to ask for 2-factor token when logging in. 2-factor authentication is based on one part where you need to know the password plus something you need to have additionally. You can create a separate key on an external device like a tablet or mobile phone. There are also devices like RSA token but that’s not part of this. Here I plan to use Android tools like FreeOTP, Authy or Google Authenticator for the passkey. They usually produce every 30 seconds a new key based on OATH. Let’s secure the ssh access now. Setup: Firstly we need to […]

%d bloggers like this: