How to use Google Authenticator with OpenVPN server on Ubuntu 12.04

server authentication google openvpn

Solution 1:

Ok, Google is my friend.

I did this:

# apt-get purge libpam-google-authenticator
# download https://code.google.com/p/google-authenticator/downloads/list
# apt-get install libpam-dev

Add this to Makefile, right after the license:

LDFLAGS="-lpam"

Then

# make
# make install
# service openvpn restart

Also, make sure /home/username/.google_authenticator has no rights at all except read rights for the user that's going to use it.

Now I need to enter my username that's my local username on the server (my shell account) as my OpenVPN username and the Google Authenticator 6-digit code as the password.

Now it works.

Thank you all for your time :)

(How can I mark this post as solved? Do I just edit the topic title?)

Solution 2:

If you just want OTP auth for OpenVPN, there is a native OTP OpenVPN plugin available. It is compatible with Google Authenticator secret keys. All secrets are stored in a single text file and there is no need to configure PAM or create user directories.

Check it out: https://github.com/evgeny-gridasov/openvpn-otp

Related

How do I use dm-crypt (LUKS) with GnuPG to use two-factor for FDE?
How to link a custom keyboard shortcut to a bash script in Ubuntu 13.04?
Use NotifyOSD with i3wm window manager
Black screen during boot after TTY1 login
apport-retrace fails with error: report file does not contain one of the required fields
Step by Step Install of MAAS and JUJU
How to enable display of framebuffer images (e.g. in w3m, fbi) within byobu (pts)?
Sharing git repo on NTFS partition between Linux/Windows dualboot
Wine: How can I make Wine applications look like Windows 8? [duplicate]
How to sync Ubuntu/software/configurations between N computers with free software and/or without a cloud? [closed]
Xubuntu - open whisker with Super button issue
Change ownership of external drive