Adding Authenticator PAM to Linux keyring

2

The (google) two-factor Authenticator project, which can be used to perform two-factor authentication (with something like the Android Authenticator) includes a PAM (pluggable authentication module) for Linux. I would like to use this for some password queries in my system sessions.

For example, it would be nice to have a password safe or keyring (say, GNOME Seahorse or KeePassX) that was local, but required more than just a single password to unlock.

How can I modify the authentication process with this PAM to get two-factor authentication in those types of password prompts?

This is a pretty easy process when the application is PAM-aware, as detailed in this question, but not easy if the application is not PAM-aware.

bright-star

Posted 2014-04-09T22:34:31.163

Reputation: 1 489

1

google authenticator works on linux, too. http://code.google.com/p/google-authenticator/

– Sirex – 2014-04-09T22:45:25.930

I see that there is a PAM module, but that alone is not enough, of course. – bright-star – 2014-04-09T23:17:16.357

Answers

0

You can build your own pam modules. Just use a sample "skeleton" for a pam module and include your own code.

You can start with this: https://github.com/beatgammit/simple-pam

user3099887

Posted 2014-04-09T22:34:31.163

Reputation: 1

This probably should have been a comment on the original question. – Burgi – 2016-02-12T09:47:13.693

Asked: 2014-04-09T22:34:31.163

Viewed: 493 times

Active: 2016-02-12T08:29:20.873