Hi Team,
I have created centralized MFA server with PrivacyIDEA(on Ubuntu 22) that needs to provide OTP login for SSH login for 10+ Linux(ubuntu 22,Centos) client environment.
Current Setup - Ubuntu 22 + PrivacyIDEA 3.12.2 + Freeradius
Conditions are:
- No LDAP/AD server user logins each client server already has few local user accounts I want to configure MFA ie OTP for login with existing local user accounts.
- SSH user login and SUDO access require OTP. While try to SSH access to any clients login should be username and password once its success then prompt to Enter OTP.
I am looking for 1. Creation of policy with suitable condition and action to configure at Server side. 2. How to configure this on client SSH configure.
Please help me.