Hi, You can do it at the same time with a yubikey and editing your pam file.
https://developers.yubico.com/yubico-pam/YubiKey_and_SSH_via_PAM.html#:~:text=The%20Yubico%20PAM%20module%20for,YubiKey%20assigned%20to%20the%20user. Been doing this for years, James On Thu, 13 Aug 2020 at 15:24, Toni Mas Soler <antomas...@gmail.com> wrote: > I think 2FA first is better. Thus you don't have to type your password > if you have a wrong 2FA. > > Toni Mas > > Missatge de Pòl Hallen <de...@fuckaround.org> del dia dj., 13 d’ag. > 2020 a les 13:38: > > > > Hi folks :) > > > > > > what it better with 2FA: at ssh login request first 2FA authentication > > next ssh password or viceversa? > > > > thanks! > > > > Pol > > > >
