I am using sshd, and allow logins with public key authentication.
I want to allow select users to log in with a PAM two-factor authentication module.
Is there any way I can allow PAM two-factor authentication for a specifc user? I don't want users -
By the same token - I only want to enable password authentication for specific accounts. I want my SSH daemon to reject the password authentication attempts to thwart would-be hackers into thinking that I will not accept password authentication - except for the case in which someone knows my heavily guarded secret account, which is password enabled. I want to do this for cases in which my SSH clients will not let me do either secret key, or two-factor authentication.
© Server Fault or respective owner