zrayburn
commented
3 years ago I also have this issue with Duo 2FA. There isn't a second prompt so there is no way to connect.
Open Verequies opened 3 years ago
zrayburn
commented
3 years ago I also have this issue with Duo 2FA. There isn't a second prompt so there is no way to connect.
BCVerdouw
commented
3 years ago I know it isn't a fix, but you could add a bash script to your servers to disable the use of 2fa for a short time before mounting the drives and then re-enabling it, that's how i have done it.
Verequies
commented
3 years ago You could do that, but that is also a huge security vulnerability. You're best off having two users at the moment for those who need SSHFS and configure pam to not require 2FA for users in a particular group. Or at the moment, I only allow SSHFS on Windows to connect if the user has an SSH key setup.
mark-sellars
commented
2 years ago I also have this issue with Duo 2FA. There isn't a second prompt so there is no way to connect.
I am dealing with the same thing. One thing I did find is if you use duo unix without PAM it will do a push notification automatically and works good. I have to make it work with tokens too so not a good work around for me.
Less secure but this method works with push only in DUO https://duo.com/docs/loginduo
It would be great if sshfs-win supported Google Authenticator 2FA. I have recently employed this as an extra security precaution on my servers and as such members of my team who use Windows are not able to connect with sshfs-win anymore.