Configure four eyes authorization
Article ID: 165 | Rating: Unrated | Last Updated: Fri, Mar 2, 2018 at 1:25 AM
- Enable four eyes authorization in Settings -> General -> Security
- Make sure Four Eyes Authorization Privilege is enabled for the user who would be granting access to view ssh logs. Go to Access Control->User-Action and grant the user Four Eye Authorization Privilege.
- Ensure that one of the two factor authentication method Google 2FA, Yubikey, or DUO Security is configured for the four eye authorizing user. In this case we are setting up Google 2FA.
- You have configured Four eyes authorization for viewing ssh logs. Go to Users->SSH Logs to view the logs
- The user with four eye authorizing privilege should enter his name and two factor code to authorize the viewing of logs.
- The authorization by the four eye privileged user is complete!