SSH Google Authenticator Ignore/Whitelist ips

google-authenticator

I installed google authenticator (two step verification), "libpam-google-authenticator" package, although it asks for a code for every single connection to SSH. I want to put localhost and my own ip whitelisted from google authenticator so I and localhost skip two step verification

Or is there a way to skip SSH challenge for certain ips?


In "/etc/pam.d/sshd" 

auth [success=1 default=ignore] pam_access.so accessfile=/etc/security/access-local.conf
auth required pam_google_authenticator.so

Then on "/etc/security/access-local.conf"

#localhost doesn't need two step verification
+ : ALL : 192.168.1.0/24
+ : ALL : LOCAL
+ : ALL : YOURIPHERE
#All other hosts need two step verification
- : ALL : ALL

Don't forget to restart ssh

Related

Disable AAAA lookups in libcurl
Tomcat session replication issue
Free java hosting? [duplicate]
"Failed at step EXEC spawning" even with proper group permissions
ELB Instance Out of service
Why No name servers found at child?
GUI based remote sessions for end users
can't start play! server on ec2 (play! framework)
How to buy a X.509 certificate for signing digital payloads
connect to 3rd party VPN server but don't use it as the default route?
Referencing AWS Parameter Store's Secure String in CloudFormation template
Python 3 garbage data into the struct.unpack