Differences

This shows you the differences between two versions of the page.

--- 2fa_на_предприятии [2025/08/11 14:31]
val
+++ 2fa_на_предприятии [2025/08/18 06:32] (current)
val [2FA на предприятии]
@@ Line 5: / Line 5: @@
   * [[https://2fa.zone/|Get 2FA Verification Code]]
+  * [[https://2fa.fb.rip/]]
+  * [[https://2fa.live/]]
   * [[https://winitpro.ru/index.php/2021/12/21/2fa-dlya-ssh-v-linux/|Включаем двухфакторную аутентификацию (2FA) для SSH входа в Linux]]
+  * [[https://networkjutsu.com/ssh-google-authenticator/|Securing SSH with Google Authenticator]]
   * [[https://perfecto25.medium.com/openvpn-community-2fa-with-google-authenticator-4f2a7cb08128|OpenVPN Community + 2FA with Google Authenticator]]
+  * [[https://askubuntu.com/questions/1444599/does-ubuntu-openvpn-client-supports-static-challenge]]
+  * [[https://networkjutsu.com/freeradius-google-authenticator/|Adding Two-Factor Authentication to FreeRADIUS]]
 ===== Реклама =====
@@ Line 36: / Line 44: @@
 ===== Шаг 2. Настраиваем SSH доступ с 2FA =====
+===== Шаг 3. Настраиваем OpenVPN доступ с 2FA =====
+<code>
+debian:~# cat /etc/pam.d/openvpn
+</code><code>
+auth required pam_google_authenticator.so authtok_prompt=pin
+#auth required pam_google_authenticator.so authtok_prompt=pin user=root secret=/etc/openvpn/google-auth/${USER}
+...
+</code><code>
+# systemctl edit openvpn@openvpn1
+</code><code>
+[Service]
+ProtectHome=no
+</code><code>
+# cat /etc/openvpn/openvpn1.conf
+</code><code>
+...
+plugin /usr/lib/x86_64-linux-gnu/openvpn/plugins/openvpn-plugin-auth-pam.so "openvpn login USERNAME password PASSWORD pin OTP"
+...
+</code>
+===== Шаг 4. Настраиваем 2FA доступ к GitLab =====
+  * [[https://docs.gitlab.com/user/profile/account/two_factor_authentication/|GitLab Two-factor authentication]]
 ===== Черновик =====

Методические материалы Лохтурова Вячеслава

User Tools

Site Tools

Differences

Page Tools