There is a replacement for PuTTY's pageant module that will read the HSPD-12 badge I have and use one of the certs from there. I have to enter my badge pin every time I make a connection so it is 2-Factor (something I have-the badge, something I know-the pin to access the badge). I think it is called PuTTY-CAC. It only works under Windows.
There is someway (openct, other stuff) to allow these PIC/CAC cards to be used for Login authentication for Linux workstations, but I have never gotten my linux (CentOS 6.3) to acknowledge that the card reader exists, but it will gladly pass it over to a Windows virtual machine for the ActiveAgent authentication routine. I don't know if it official but our cybersecurity people feel that if you can 2-Factor authenticate to the workstation, then you can use PuTTY/SSH public/private keys from there. On 10/22/2012 07:31, Bauer, Bobby (NIH/CIT) [E] wrote: > Anybody doing or even know of using 2 factor authentication to logon to RHEL > 6 running under z.VM? For instance a smart card and a password > > > Bobby Bauer > Center for Information Technology > National Institutes of Health > Bethesda, MD 20892-5628 > 301-594-7474 > > > ---------------------------------------------------------------------- > For LINUX-390 subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO LINUX-390 or visit > http://www.marist.edu/htbin/wlvindex?LINUX-390 > ---------------------------------------------------------------------- > For more information on Linux on System z, visit > http://wiki.linuxvm.org/ > ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For more information on Linux on System z, visit http://wiki.linuxvm.org/
