2FA VIA JUMPHOST

Pragma Systems Technical Forum

2FA VIA JUMPHOST

https://forums.pragmasys.com/Topic479.aspx

By josturne - 1/8/2019 1:57:57 PM

Does Fortress support the ability for me to Ssh to a line server and then ssh from the linux server to a switch or router that supports 2factor and pass the 2factor challenge back to the originating host?

By Technical Support Group (TSG) - 1/11/2019 12:24:23 PM

+x

josturne - 1/8/2019 7:57:57 PM
Does Fortress support the ability for me to Ssh to a line server and then ssh from the linux server to a switch or router that supports 2factor and pass the 2factor challenge back to the originating host?

The general answer to your question is most likely.
You would need to connect to end point through the linux box using a proxy connect, using our ProxyCommand parameter. Please see https://www.pragmasys.com/ssh-client/topics/idh-proxysupport.htm for full syntax details.
For the 2factor authentication, support depends on what type of 2factor authentication the end point supports and how it is implemented with the ssh protocol. If it is something like TOTP and uses keyboard interactive, then we will support it from our client end. If it is something like U2F, then we would not support it because it is not supported as a standard ssh authentication.