Can custom PAM (Pluggable Authentication Module) libraries work with Bastion SSH?

Stephen Baker 21 Reputation points

I have provisioned a server for one of our team, who want to have MFA enabled via google-authenticator-libpam on the guest VM's themselves.

Once configured, Azure bastion no longer works.

Is having user interaction during SSH login not supported by Azure Bastion, or is there a special config?

Azure Bastion
Azure Bastion
An Azure service that provides private and fully managed Remote Desktop Protocol (RDP) and Secure Shell (SSH) access to virtual machines.
243 questions
{count} votes

Accepted answer
  1. SaiKishor-MSFT 17,211 Reputation points

    @Stephen Baker Azure Bastion does not support MFA. However, if integrated with Azure AD, you can implement it through AD as given here in the document-

    Hope this helps. Please let us know if you have further questions/concerns. Thank you!


    Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.

0 additional answers

Sort by: Most helpful