How to configure Yubikey two factor authentication in ssh ?
- How to enable/disable Yubikey 2FA (Two-factor Authentication) in Ezeelogin?
Do check out the video to Configure Yubikey two-factor authentication in ssh jump host
1. Navigate to Settings -> General -> Two FactorAuthentication -> Enable Yubikey. Click on the Get Yubico API Key to get the Client and Secret of Yubikey.
2. Navigate to Account -> Password -> New YubiKey to complete the setup.
3. Once this has been done, login into the web interface using the Yubikey 2FA method and then the backend 2FA in ssh would automatically use the Yubikey 2FA. Basically, the last successful 2FA method used in the web interface/web-GUI would be used in the backend ssh shell/ or ezsh shell.
Yubikey outbound URL's to be whitelisted
Following are the Yubikey outbound urls to be whitelisted in firewall
Yubikey library requires access to the above URLs. Also, do check out the article for the list of YubiKey API servers that the YubiKey client would utilize https://developers.yubico.com/yubikey-val/Getting_Started_Writing_Clients.html