Wired Intelligent Edge

 View Only
last person joined: 5 days ago 

Bring performance and reliability to your network with the HPE Aruba Networking Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of your switching devices, and find ways to improve security across your network to bring together a mobile-first solution
Back to discussions
Expand all | Collapse all

[Info]: AOS-CX SSH Support two-factor authentication (2FA)

This thread has been viewed 7 times

  • 1.  [Info]: AOS-CX SSH Support two-factor authentication (2FA)

    EMPLOYEE
    Posted Aug 14, 2022 12:09 PM

    AOS-CX support SSH 2fa Authentication.

    • First Authentication: Local Certificate Authentication.
    • The username in the user's X.509 certificate is validated against the local user accounts on the switch.
    • In other words, local user has both authentication and authorization role configured locally.
    • Incase customer is looking for enhancement like Authorization role need to be downloaded from remote server or so, please reach out to your account team.
    • Second Authentication: AAA/Radius Authentication.
    • Second factor Authentication (username and Password)  with AAA/Radius server. Check the network connection and reachability to Radius Server before enabling two-factor authentication. The username and password are validated against the accounts on the RADIUS server and the configured trust anchors.
      more details:
      Configuring two-factor authentication
      Arubanetworks remove preview
      Configuring two-factor authentication
      Two-factor authentication is available for added security. In two-factor authentication, X.509 certificate-based authentication is combined with RADIUS authentication. When a user establishes an SSH connection to the switch, two factor-authentication occurs as follows: The username in the user's X.509 certificate is validated against the local user accounts on the switch.
      View this on Arubanetworks >

      Good day!