Notes for setting up Google Authenticator
Google Authenticator App
Android - https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2
iOS - https://itunes.apple.com/us/app/google-authenticator/id388497605
WARNING: It is possible that you may become locked out if there are issues during setup. Therefore it is highly suggested that you have the option to physically access the machine you are installing to in the event that you do become locked out.
-
Clone google-authenticator-libpam repo.
git clone https://github.com/google/google-authenticator-libpam.git -
Build and install.
./bootstrap.sh && ./configure --prefix=/usr && make && sudo make install -
Run
google-authenticatorand follow the setup instructions. -
Add
ChallengeResponseAuthentication yesto/etc/ssh/sshd_config -
Add
auth required pam_google_authenticator.soto/etc/pam.d/sshd
- Arch Linux Wiki for Google Authenticator : https://wiki.archlinux.org/index.php/Google_Authenticator
- Github repository for Google's google-authenticator-libpam : https://github.com/google/google-authenticator-libpam
- Arch Linux Wiki for Secure Shell ( ssh ): https://wiki.archlinux.org/index.php/Secure_Shell
- Arch Linux Wiki for Rate Limiting with UFW : https://wiki.archlinux.org/index.php/Uncomplicated_Firewall#Rate_limiting_with_ufw