User Tools

Site Tools


wiki:passwordlesslinux

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
wiki:passwordlesslinux [2019/08/30 07:34]
pyro added background around U2F
wiki:passwordlesslinux [2019/08/30 07:36] (current)
pyro added lines for visual organization
Line 3: Line 3:
 Microsoft was all about taking Windows passwordless, which got me thinking, "Hey I bet Linux could do that right now!"  So I set off to make my Linux system Passwordless (mostly).  And now I'm going to share the method I used to do so.  Some disclaimers - if you mess up with some of these commands you will lock yourself out of your system.  I use a method that should allow you to still enter a password if the u2f key fails, but be warned the final "Passwordless" system will rely solely on the u2f key and if you break or lose it you will lose access to your computer unless you do some recovery type things. Microsoft was all about taking Windows passwordless, which got me thinking, "Hey I bet Linux could do that right now!"  So I set off to make my Linux system Passwordless (mostly).  And now I'm going to share the method I used to do so.  Some disclaimers - if you mess up with some of these commands you will lock yourself out of your system.  I use a method that should allow you to still enter a password if the u2f key fails, but be warned the final "Passwordless" system will rely solely on the u2f key and if you break or lose it you will lose access to your computer unless you do some recovery type things.
  
 +----
  
 ===== Background ===== ===== Background =====
Line 9: Line 10:
  
 The general gist of how it works (from a users perspective) is you log into a service then where other methods would normally prompt you on your phone, or send you a text message you just simple press the button on a physical USB key plugged into your computer. The general gist of how it works (from a users perspective) is you log into a service then where other methods would normally prompt you on your phone, or send you a text message you just simple press the button on a physical USB key plugged into your computer.
 +
 +
 +----
  
  
Line 21: Line 25:
   3. pam-u2f installed in your machine, varies from distro to distro (for arch can use sudo pacman -S pam-u2f)   3. pam-u2f installed in your machine, varies from distro to distro (for arch can use sudo pacman -S pam-u2f)
   4. careful attention to detail   4. careful attention to detail
 +
 +----
  
 ===== Step 1: building your key mappings ===== ===== Step 1: building your key mappings =====
Line 46: Line 52:
  
 then save the file then save the file
 +
 +----
  
 ===== Step 2: Edit your PAM ===== ===== Step 2: Edit your PAM =====
wiki/passwordlesslinux.txt ยท Last modified: 2019/08/30 07:36 by pyro