Last active
October 25, 2017 23:50
-
-
Save naa0yama/041cbfbc177614b4c3b84964efad80a0 to your computer and use it in GitHub Desktop.
MacBook で Yubikey 環境を作る ref: http://qiita.com/FoxBoxsnet/items/712b6d37147bf780f43e
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
mkdir -m0700 -p ~/.yubico | |
ykpamcfg -2 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
YubiKey(ユビキーと読みます)は、ボタンにタッチするだけの簡単操作で二要素認証を行える小型のハードウェアデバイスです。 | |
YubiKeyは、セキュリティが強固に設計されているため、大企業はもちろん、一般のユーザー様など、どなたにでも簡単にご利用いただけます。 | |
YubiKey NEOは、接触型(USB)と非接触型(NFCやMIFARE)に対応しています。 | |
YubiKeyは、次世代認証標準であるFIDO U2FやYubico-OTP、OATH-OTP、OATH-HOTP、OATH-TOTP、OpenPGP、PIV、チャレンジレスポンス、安全な静的パスワードに対応しています。 | |
ひとつのYubiKeyでアプリケーションの数に上限なくご利用いただけます。ドライバーもクライアントソフトもバッテリーも必要ありません。 | |
詳細はこちら。 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
mkdir -m0700 -p ~/.yubico | |
ykpamcfg -2 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
```bash:/etc/pam.d/authorization | |
auth required /usr/local/lib/security/pam_yubico.so mode=challenge-response |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# screensaver: auth account | |
auth required /usr/local/lib/security/pam_yubico.so mode=challenge-response | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment