Re: [OpenIndiana-discuss] PAM risk based authentication?

Hugh McIntyre Fri, 11 Dec 2015 00:46:51 -0800

I have not tried this, but if this is only for SSH, did you try "Match"directives as listed underhttp://serverfault.com/questions/355484/change-the-ssh-authentication-method-depending-on-the-ip-address?


Hugh.



On 12/10/15 5:40 AM, Stefan Müller-Wilken wrote:

Dear all,



is there a way in OpenIndiana's PAM  implementation to route through PAM 
modules based on environment conditions, a.k.a risk based authentication? More 
concretely I'd like to introduce a 2-factor PAM auth module when coming from 
certain IP ranges while staying with traditional Passwords for others and allow 
Kerberos while SSH'ing on my private network only.



Is this possible today? Thanks for any ideas! :-)



Cheers

  Stefan



________________________________

Acando GmbH, Millerntorplatz 1, 20359 Hamburg, Germany | Gesch?ftsführer: Guido 
Ahle | Amtsgericht Hamburg, HRB 76048 | Ust.Ident-Nr.:DE208833022
_______________________________________________
openindiana-discuss mailing list
openindiana-discuss@openindiana.org
http://openindiana.org/mailman/listinfo/openindiana-discuss


_______________________________________________
openindiana-discuss mailing list
openindiana-discuss@openindiana.org
http://openindiana.org/mailman/listinfo/openindiana-discuss

Re: [OpenIndiana-discuss] PAM risk based authentication?

Reply via email to