Skip to main content
  • EN

Hi Everyone, 

 

Thought I would share some information about Authentication to AD and using Microsoft NPS for radius auth providing MFA when connecting to the Publishers with SSH.  This is useful instead of using the default shared account.

 

The information I obtained to get this working was obtained from the following sources, it was quite straight forwarded and implemented without much difficulty… and I am no Linux admin.

 

Introduction to network user authentication with SSSD | Ubuntu

How to set up SSSD with Active Directory | Ubuntu

Troubleshooting SSSD | Ubuntu

Azure MFA for SSH using NPS/MFA Extension

 

Good luck with it, hope someone else finds this helpful.

 

A couple of extra steps included:

 

Add an AD Access filter which will ensure SSSD will filter on a specific AD group for permitted users to authenticate.

 

Add the same AD group to the Sudoers file, this will ensure the Publisher Wizard can be run from individual accounts.

Reply


Terms & ConditionsCookie settings