Hello
This might need to be configured from Safenet SAS authentication service.
From ssh configuration, one needs to configure PAM, please check link for configuration :
https://www.ibm.com/support/pages/enable-ssh-aix-use-pamAnd in the /etc/ssh/sshd_config , need to set authenticationmethods as
AuthenticationMethods password,keyboard-interactive
(This should prompt for password first and then the keyboard-interactive method which is otp based)
refresh ssh daemon after configuration
stopsrc -s sshd
startsrc -s sshd
Thanks
------------------------------
Sandeep Umesh
------------------------------
Original Message:
Sent: Tue February 23, 2021 12:53 AM
From: Anyl Mjn
Subject: Rearrange Authentication Process
Hi,
Currently, we have integrated AIX with Two Factor authentication System (Safenet SAS) for SSH login, which is working fine. With current configuration it asks for the OTP first and then for the Password. But, is there any configurations that can be applied so that the Server asks for Password First and then for the OTP.
------------------------------
Anyl Mjn
------------------------------