webmin / usermin

Usermin source code
http://www.usermin.com/
Other
120 stars 48 forks source link

Missing Two-Factor Authentication #2

Open iliajie opened 9 years ago

iliajie commented 9 years ago

Jamie, could ypu please add Two-Factor Authentication to Usermin as well? It should be easy to do and straight forward, as it's big brother already has it?

jcameron commented 9 years ago

It's on my TODO list - but its a bit more complex than adding it to Webmin, as I need a place to store per-user two-factor keys.

iliajie commented 9 years ago

That's great! Thanks, Jamie!

iliajie commented 9 years ago

Jamie, Usermin really is missing two factor authentication. You mean like, where to set up the keys? I think each user should be able to do it using Usermin itself? Probably having separate module which user is gonna have access to to do it. A key could be stored in home directory of each user?

aaronstpierre commented 8 years ago

Hi,

Was curious if this was going to be implemented soon? Thanks!

iliajie commented 8 years ago

+1 Would be great.

jcameron commented 8 years ago

It's on my todo list, but I haven't gotten to it yet.

aaronstpierre commented 8 years ago

Awesome! Thank you Jamie!

amishmm commented 7 years ago

If you are using PAM (which I think is default now) you can use two factor authentication easily - without any changes to usermin.

I am using this https://github.com/google/google-authenticator-libpam

My password that I supply to webmin becomes "passwordNNNNNN", where NNNNNN is google code. (which changes every 30 seconds or so)

Advantage is that it works even with SSH, FTP, POP, IMAP etc.

ilima-nvps commented 6 years ago

I would also love this option in usermin! We are looking to roll this out to users. Having this feature will help us ensure we are following internal best practices.

swelljoe commented 6 years ago

Huh, with that Google Authenticator PAM thingy, Usermin could make the UI more intuitive just by adding a new field for the code, and then appending it to the password when checking it against PAM.

swelljoe commented 6 years ago

Is that PAM lib available in any OS repositories, yet? Asking people to install from source is messy. We could include a package in the Virtualmin repos, but for folks not using Virtualmin, it'd still be tough to deploy widely.

amishmm commented 6 years ago

It available in Arch linux repository. https://www.archlinux.org/packages/community/x86_64/libpam-google-authenticator/

Fedora repo https://fedora.pkgs.org/26/fedora-x86_64/google-authenticator-1.03-1.fc26.x86_64.rpm.html

pixel-paul commented 6 years ago

This type of authentication is fast becoming a standard......any sign of this being developed further?

ghost commented 5 years ago

Missing this really. 2 factor and even more f2u are becoming standard fast. So fast I would consider it a security priority in development.

Awbmilne commented 4 years ago

Please do add this if you get the time. Looking to keep my home server safe!!

Thanks for all the crazy great work so far.