Passwordless Login to Ubunto 20.04 with FIDO2

Asked Jan 19 '22 at 15:11

Active Jan 20 '22 at 14:28

Viewed 2,655 times

So i've setup passwordless thru FIDO2 by adding

auth sufficient pam_u2f.so authfile=/home/me/.config/FIDO2/u2f_keys

having followed the instructions on the yubico page to generate the u2f_keys code

It's working great as an additional factor of authentication but I'd like it to be the only one (ie, we are going passwordless) or at least the primary form of authentication. Right now logging in and sudo'ing results in it asking for a password and then asking to tap the key.

edited Jan 20 '22 at 14:28

asked Jan 19 '22 at 15:11

Dan D

See here to disable the sudo password: https://askubuntu.com/questions/147241/execute-sudo-without-password Then set the keyring password blank, and enable autologin. – vanadium Jan 19 '22 at 15:30
Enabling auto login would bypass FIDO2 I'm pretty sure.. – Dan D Jan 20 '22 at 14:27
A year late, I know, but where did you put that auth line? At the beginning or at the end? Similar worked for me when it was before the ones that checked password. – Tomas Zellerin Feb 03 '23 at 15:54

Passwordless Login to Ubunto 20.04 with FIDO2

0 Answers0