Is it possible to authenticate a user with only OTP and ssh-pubkeys?
So far I have successfully configured FreeIPA to use Two factor
authentication (password + OTP). I had to change the sshd_config to
achieve this by modifying the AuthenticationMethods to be:
In this way the user's ssh-pubkey, password, and OTP are required to
login. I would like to remove the password requirement but retain the OTP
>From the FreeIPA web UI there is no setting to only enable OTP without a
password. Is there a way to change the sshd_config AuthenticationMethods
to only allow OTP + ssh-pubkey. Does this instead require a change to one
of the pam files?
Manage your subscription for the Freeipa-users mailing list:
Go to http://freeipa.org for more info on the project