search
HomeOperation and MaintenanceLinux Operation and MaintenanceHow to secure access to your CentOS server using two-factor authentication

How to secure access to your CentOS server using two-factor authentication

Jul 08, 2023 am 11:37 AM
centos serverTwo-factor authenticationAccess security

How to use two-factor authentication to protect CentOS server access security

Abstract: With the increase in network attacks, protecting server access security has become particularly important. Two-factor authentication is a way to enhance server security. This article will introduce how to use two-factor authentication on CentOS servers to improve access security.

Keywords: two-factor authentication, CentOS server, access security, code example

1. What is two-factor authentication

Two-factor authentication refers to passing Verify the user's identity using more than two different authentication factors. Common authentication elements include: password, fingerprint, token, etc. In traditional single-factor authentication, you only need to enter your username and password to log in, while two-factor authentication requires users to provide another form of identification in addition to their password to increase security.

In this article, we will implement two-factor authentication using two different authentication elements: password and token.

2. Configure the CentOS server

  1. Install the required software packages

First, we need to install the required software packages. Enter the following command in the terminal:

sudo yum install -y epel-release
sudo yum install -y pam_radius_auth
  1. Configure RADIUS server

RADIUS (Remote Authentication Dial-In User Service) server is used to verify the token. In this example, we will use FreeRADIUS as the RADIUS server.

Open the RADIUS server configuration file/etc/raddb/clients.conf and add the following:

client YOUR_SERVER_IP {
    secret          = YOUR_SHARED_SECRET
    shortname       = YOUR_SERVER_NAME
}

Replace YOUR_SERVER_IP with your server IP address and YOUR_SHARED_SECRET For the secret key shared between you and the RADIUS server, replace YOUR_SERVER_NAME with your server name.

Restart the RADIUS server for the changes to take effect.

  1. Configure PAM module

PAM (Pluggable Authentication Modules) module is used to integrate token verification. Enter the following command in the terminal to open the PAM module configuration file:

sudo vi /etc/pam.d/sshd

Add the following content at the end of the file:

auth required pam_radius_auth.so debug

Save and close the file.

  1. Reload the SSH service

Enter the following command in the terminal to reload the SSH service:

sudo systemctl restart sshd

3. Test two-factor authentication

Now we can test whether the two-factor authentication is successful.

  1. Try to connect to the server via SSH

Enter the following command in the terminal to try to connect to the server via SSH:

ssh username@your_server_ip

Please note that the username here is your server username, your_server_ip is your server IP address.

  1. Enter Password

When prompted for your password, enter your password and press Enter.

  1. Enter the token code

Next, you will be prompted to enter the token code. Depending on the type of token you are using, enter the appropriate code and press Enter.

If the token code you entered is correct, you will successfully log in to the server.

4. Summary

By using two-factor authentication to secure access to CentOS servers, we can increase the security of the server. This article explains how to configure two-factor authentication on a CentOS server and provides corresponding code examples. I hope this article can help you better protect server access security.

Reference:

  • https://www.tecmint.com/secure-ssh-with-two-factor-authentication-in-centos/

The above is the detailed content of How to secure access to your CentOS server using two-factor authentication. For more information, please follow other related articles on the PHP Chinese website!

Statement
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
The Building Blocks of Linux: Key Components ExplainedThe Building Blocks of Linux: Key Components ExplainedApr 30, 2025 am 12:26 AM

The core components of the Linux system include the kernel, file system, and user space. 1. The kernel manages hardware resources and provides basic services. 2. The file system is responsible for data storage and organization. 3. Run user programs and services in the user space.

Using Maintenance Mode: Troubleshooting and Repairing LinuxUsing Maintenance Mode: Troubleshooting and Repairing LinuxApr 29, 2025 am 12:28 AM

Maintenance mode is a special operating level entered in Linux systems through single-user mode or rescue mode, and is used for system maintenance and repair. 1. Enter maintenance mode and use the command "sudosystemctlisolaterscue.target". 2. In maintenance mode, you can check and repair the file system and use the command "fsck/dev/sda1". 3. Advanced usage includes resetting the root user password, mounting the file system in read and write mode and editing the password file.

Linux Maintenance Mode: Understanding the PurposeLinux Maintenance Mode: Understanding the PurposeApr 28, 2025 am 12:01 AM

Maintenance mode is used for system maintenance and repair, allowing administrators to work in a simplified environment. 1. System Repair: Repair corrupt file system and boot loader. 2. Password reset: reset the root user password. 3. Package management: Install, update or delete software packages. By modifying the GRUB configuration or entering maintenance mode with specific keys, you can safely exit after performing maintenance tasks.

Linux Operations: Networking and Network ConfigurationLinux Operations: Networking and Network ConfigurationApr 27, 2025 am 12:09 AM

Linux network configuration can be completed through the following steps: 1. Configure the network interface, use the ip command to temporarily set or edit the configuration file persistence settings. 2. Set up a static IP, suitable for devices that require a fixed IP. 3. Manage the firewall and use the iptables or firewalld tools to control network traffic.

Maintenance Mode in Linux: A System Administrator's GuideMaintenance Mode in Linux: A System Administrator's GuideApr 26, 2025 am 12:20 AM

Maintenance mode plays a key role in Linux system management, helping to repair, upgrade and configuration changes. 1. Enter maintenance mode. You can select it through the GRUB menu or use the command "sudosystemctlisolaterscue.target". 2. In maintenance mode, you can perform file system repair and system update operations. 3. Advanced usage includes tasks such as resetting the root password. 4. Common errors such as not being able to enter maintenance mode or mount the file system, can be fixed by checking the GRUB configuration and using the fsck command.

Maintenance Mode in Linux: When and Why to Use ItMaintenance Mode in Linux: When and Why to Use ItApr 25, 2025 am 12:15 AM

The timing and reasons for using Linux maintenance mode: 1) When the system starts up, 2) When performing major system updates or upgrades, 3) When performing file system maintenance. Maintenance mode provides a safe and controlled environment, ensuring operational safety and efficiency, reducing impact on users, and enhancing system security.

Linux: Essential Commands and OperationsLinux: Essential Commands and OperationsApr 24, 2025 am 12:20 AM

Indispensable commands in Linux include: 1.ls: list directory contents; 2.cd: change working directory; 3.mkdir: create a new directory; 4.rm: delete file or directory; 5.cp: copy file or directory; 6.mv: move or rename file or directory. These commands help users manage files and systems efficiently by interacting with the kernel.

Linux Operations: Managing Files, Directories, and PermissionsLinux Operations: Managing Files, Directories, and PermissionsApr 23, 2025 am 12:19 AM

In Linux, file and directory management uses ls, cd, mkdir, rm, cp, mv commands, and permission management uses chmod, chown, and chgrp commands. 1. File and directory management commands such as ls-l list detailed information, mkdir-p recursively create directories. 2. Permission management commands such as chmod755file set file permissions, chownuserfile changes file owner, and chgrpgroupfile changes file group. These commands are based on file system structure and user and group systems, and operate and control through system calls and metadata.

See all articles

Hot AI Tools

Undresser.AI Undress

Undresser.AI Undress

AI-powered app for creating realistic nude photos

AI Clothes Remover

AI Clothes Remover

Online AI tool for removing clothes from photos.

Undress AI Tool

Undress AI Tool

Undress images for free

Clothoff.io

Clothoff.io

AI clothes remover

Video Face Swap

Video Face Swap

Swap faces in any video effortlessly with our completely free AI face swap tool!

Hot Tools

Atom editor mac version download

Atom editor mac version download

The most popular open source editor

VSCode Windows 64-bit Download

VSCode Windows 64-bit Download

A free and powerful IDE editor launched by Microsoft

Zend Studio 13.0.1

Zend Studio 13.0.1

Powerful PHP integrated development environment

SublimeText3 English version

SublimeText3 English version

Recommended: Win version, supports code prompts!

Notepad++7.3.1

Notepad++7.3.1

Easy-to-use and free code editor