UNIX & Linux Services
Multi-factor for Unix & Linux Pam Services
RCDevs provides a PAM module for OpenOTP
UNIX and Linux operating systems rely on a common stack called Pluggable Authentication Module (PAM) for any user authentication. All UNIX services like SSH, FTP, SMTP, etc., and privilege-based systems like SUDO and terminal login rely on PAM.
Secure Privileged User Access with SSH & more
PAM-LDAP and ActiveDirectory
RCDevs provides a PAM module for OpenOTP Server which implements the authorization and authentication in a PAM process.
PAM OpenOTP is easy to implement and is provided in open-source code and pre-compiled versions for most Linux OSes. Proper deployment of PAM OpenOTP should rely on a pre-established PAM-LDAP foundation where the UNIX/Linux users and groups are stored in an LDAP directory.
WebADM is able to federate your AD users and groups for UNIX and Linux in order to make your AD organization usable in all your UNIX-based systems. This means you can easily extend your AD users with the required POSIX-account capabilities from WebADM. Then the AD users and groups can just replace your /etc/password or local LDAP users.
Key features
Works with any PAM-enabled service
Very easy installation and configuration
SSH user access geolocations in WebADM audit viewer
Supports any OpenOTP method (Tokens, Yubikey, SMSOTP, MailOTP…)
Supports LDAP, OTP and LDAP+OTP login modes
OTP with challenge-response or password concatenation
Authentication policies per client application or group of users
Compatible with
PAM OpenOTP works with any UNIX and Linux service
Secure Shell (SSH) and File Transfer Protocol (FTP)
OpenVPN, L2TPd, PPTPd…
SuDo & Terminal Sessions
SMTP, POP, IMAP…
How to secure an OpenSSH server with OpenOTP multi factor authentication server
Choose the method that best suits you