Using Jumpcloud's LDAP-as-a-Service + Multi-Factor Authentication for SSH Login in Linux

I am doing a Proof-of-Concept for my personal project using Jumpcloud's LDAP-as-a-Service.  Hence it's free for 10 users.  In the long run, I plan to setup my home lab and create my virtual office in there.

  1. Spin a Linux virtual machine in Linode.
  2. Create an account in Jumpcloud.
  3. Enabled Multi-Factor Authentication (MFA) in emporium Linux system via Jumpcloud's portal.  In this case, I used Google Authenticator tool (that's why it asks for Verification code below upon login).
Here's the sample output of the setup I have done.  I will try to make it more detailed soon.

[mmond@nx03 ~]$ ssh michaelm@
Verification code:
Last login: Thu Mar  1 08:30:24 2018

[michaelm@europium ~]$
[michaelm@europium ~]$ sudo su -
We trust you have received the usual lecture from the local System
Administrator. It usually boils down to these three things:
    #1) Respect the privacy of others.
    #2) Think before you type.
    #3) With great power comes great responsibility.
[sudo] password for michaelm:
Last login: Thu Mar  1 08:17:22 UTC 2018 on pts/1

[root@europium ~]# ldapwhoami -H "ldaps://ldap.jumpcloud.com" -D "uid=michaelm,ou=Users,o=3367e67801a2368b19d42664,dc=jumpcloud,dc=com" -x -W
Enter LDAP Password:

No comments:

Post a Comment