0cfdj (0cfdj) asked a question.
Hi Everyone,
I am trying to secure access SSH to my Linux server via Okta.
I have downloaded the Radius Linux Agent (RPM) on my Linux server and did the installation as per the Okta Guide "Install the Okta RADIUS agent on Linux OS". I have also configured basic authentication okta sign-on Policy for RADIUS Login type through my Okta Console.
However something is missing, i am not prompted for MFA when logging with my ec2-user, and when trying other user, login is denied saying "No support authentication methods available (server sent: publickey,gssapi-keyex,gssapi-with-mic)"
But the guide does not go further beyond the installation of the agent....can anyone share the configuration experience when using this agent to secure ssh access? What am i missing?
Hi @0cfdj (0cfdj) - I believe you would have been looking for the PAM module for Linux that was in Beta for a while, but looks like it isn't on the roadmap anymore:
https://support.okta.com/help/s/product-roadmap/aGg2A000000fxXRSAY/pr000448
Another way to address this use case is through our product, advanced server access - https://help.okta.com/en/prod/Content/Topics/Adv_Server_Access/docs/asa-overview.htm - feel free to try it out in a sandbox environment. Mindful that it's a different SKU which would have cost associated with it.
Feature request or upvoting an existing okta idea is another way to raise this with our product team - https://ideas.okta.com/
-Andrew
Why feature request was canceled ?