Article Content
Article Number | 000026743 |
Applies To | RSA Product Set: SecurID RSA Product/Service Type: Authentication Agent for PAM RSA Version/Condition: 7, 6, 5 Platform: Red Hat Enterprise Linux O/S Version: 32-bit and 64-bit RHEL 6, 5, 4 |
Issue | This article provides information on how to stack a Unix login prompt with a SecurID password prompt for two factor authentication. |
Resolution | Make a backup of the configuration file you are editing before making modifications to any PAM configuration files. On Linux, the location of the PAM configuration files is /etc/pam.d. The following sshd will prompt users who ssh to a Unix machine first for a password, then prompt for a two factor SecurID authentication:
If it is not set to yes, make the change and then restart ssh as root:
The following remote file will prompt users who telnet to a Unix machine first for a password, then prompt for a two factor SecurID authentication:
|
Notes | All PAM configuration files on Red Hat Linux are located in /etc/pam.d. Each protocol (sshd, rlogin, telnet (also known as "remote"), etc.) has its' own unique file name. This differs from Solaris, which uses a single file /etc/pam.conf, for PAM configuration directives. |
Legacy Article ID | a61027 |