Comments on: How to Setup Two Factor Authentication for SSH on Fedora

By: Ravi Saive

Ravi Saive — Mon, 25 Mar 2019 06:36:28 +0000

In reply to Ramesh.

@Ramesh,

It’s Google app, so there is no issue about security. I haven’t tested it without internet, but I think it should work without internet connection also. Give a try and see..

By: Ramesh

Ramesh — Sat, 23 Mar 2019 06:14:39 +0000

How secure is Google authenticator app as this needs Internet connection on secure zone linux servers and is it possible without Internet connection too?

By: Sum Yung Gai

Sum Yung Gai — Fri, 22 Mar 2019 21:34:22 +0000

Google Authenticator is no longer open source, so I would not run it on my systems anymore. I have done 2FA on CentOS and RHEL systems using US Government PIV/CAC cards, all with open source software that comes with CentOS/RHEL (coolkey driver). It's not that hard, and I imagine that the new replacement driver, called OpenSC, is available in the latest Fedora (it's present in RHEL 7.4).

By: J Billheim

J Billheim — Fri, 22 Mar 2019 19:33:30 +0000

Anyone using Authy vice Google Authenticator to do this?

By: Loweel

Loweel — Fri, 22 Mar 2019 14:16:04 +0000

What you set is a single factor authentication, not double. Double factor means

– Something you know (password)
– Something you have (your OTP device).

What you do is to use only the OTP. This is single factor. Keep the password there, and you have two factors.