Semi-automated 2FA logon

[Russell83]

Hi there,

I'm currently running SecureCRT 8.0.4 from a Windows machine. Due to the company introducing 2FA on the target Linux servers by means of pressing a button on a Yubikey. As a result, users are now required to type their domain password AND use a Yubikey code in the same passowrd prompt i.e.

username: USER1
password: <password><Yubikey>

Storing the user password through SSH does not wait for the Yubikey to be used, neither does using the send/expect sesion in Logon Actions.

Is there any way of storing the user's password securely so they don't have to type it, but awaiting their yubikey input before sending this to the server? Not sure if it's possible through VBS if not directly through CRT functions?

Many thanks,

Russell

[bgagnon]

Hi Russell83,

Quote:

Is there any way of storing the user's password securely so they don't have to type it, but awaiting their yubikey input before sending this to the server? Not sure if it's possible through VBS if not directly through CRT functions?

Sorry, no, not presently.

I have added this thread to a feature request in our product enhancement database to provide a way to encrypt a password from within a script. Should a future release of SecureCRT include this feature, notification will be posted here.

If you prefer direct email notification, send an email to support@vandyke.com and include Feature Request - Forum Thread #14033 in the subject line or use this form from the support page of our website.