Can custom PAM (Pluggable Authentication Module) libraries work with Bastion SSH?

Stephen Baker 21 Reputation points
2021-02-01T05:25:05.233+00:00

I have provisioned a server for one of our team, who want to have MFA enabled via google-authenticator-libpam on the guest VM's themselves.

Once configured, Azure bastion no longer works.

Is having user interaction during SSH login not supported by Azure Bastion, or is there a special config?

Azure Bastion
Azure Bastion
An Azure service that provides private and fully managed Remote Desktop Protocol (RDP) and Secure Shell (SSH) access to virtual machines.
243 questions
{count} votes

Accepted answer
  1. SaiKishor-MSFT 17,211 Reputation points
    2021-02-10T22:40:25.463+00:00

    @Stephen Baker Azure Bastion does not support MFA. However, if integrated with Azure AD, you can implement it through AD as given here in the document- https://learn.microsoft.com/en-us/azure/bastion/security-baseline#im-4-use-strong-authentication-controls-for-all-azure-active-directory-based-access

    Hope this helps. Please let us know if you have further questions/concerns. Thank you!

    ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

    Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.


0 additional answers

Sort by: Most helpful