FreshTomato Wiki

User Tools

Site Tools

Trace:
2fa

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
2fa [2024/10/28 15:00] – -Formatting hogwild2fa [2025/08/13 04:51] (current) – -Change to: "The default file location is /opt/etc/environment" hogwild
Line 5: Line 5:
 These are simple configuration notes, and not intended to be a complete HOWTO. This setup uses openssh with google-authenticator as 2-Factor Authentication. Only the "root" user is supported.\\   \\   \\ **Prerequisites:** Install/setup entware if it isn't already installed. This is not covered here.\\  \\ These are simple configuration notes, and not intended to be a complete HOWTO. This setup uses openssh with google-authenticator as 2-Factor Authentication. Only the "root" user is supported.\\   \\   \\ **Prerequisites:** Install/setup entware if it isn't already installed. This is not covered here.\\  \\
  
-Next, install openssh-server and google-authenticator:+Install openssh-server and google-authenticator:
  
  \\  \\
Line 13: Line 13:
  \\  \\
  
-Hopefully, this will complete with all dependencies. If not, make sure to install any necessary ones.\\+If this completes without all dependencies, make sure to install any necessary ones.\\
  
- \\ Next, enable openssh-server . This is not covered here.\\  \\+ \\  \\
  
- \\+Next, enable openssh-server . This is not covered here.
  
-Configure the correct settings in configuration file /opt/etc/init.d/S39pre_ssh: \\+ \\ \\ Configure the correct settings in configuration file /opt/etc/init.d/S39pre_ssh: 
 + 
 + \\
  
     #!/bin/sh     #!/bin/sh
Line 48: Line 50:
  \\  \\
  
-The new service must be enabled at boot time as well: +The new service must be enabled at boot time as well. Make the following changes to the file"/opt/etc/ssh/sshd_config:
- +
- \\ +
- +
-Next, run /opt/etc/ssh/sshd_config and change the following from the defaults:+
  
  \\  \\
Line 160: Line 158:
     | Verification code:     | Verification code:
  
- \\ If you see this, it means that 2FA is the only authentication operating. You can now expose port 2222 (or the port you configured) to the Internet. .+ \\ If you see this, it means that 2FA is the only authentication operating. You can now expose port 2222 (or your configured port) to the Internet. .
  
  \\  \\
 +
 +The default file location is: "/opt/etc/environment"
  
  \\  \\
  
-PS - /opt/etc/environment is the default - only comments - so nothing to change - maybe a "touch /etc/environment" should have been enough+ \\
  
  
2fa.1730127645.txt.gz · Last modified: by hogwild

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki