I'm trying out Tera Term, and need to connect to a server that first offers password auth, and then switches to keyboard interactive for the 2-factor stage.
If I use OpenSSH (the .exe available on Windows 10), the debug logs look like:
debug1: Authentications that can continue: publickey,gssapi-with-mic,password
< snip lines about trying to find a keypair >
debug1: Next authentication method: password
user@host's password: <password here>
Authenticated with partial success
debug1: Authentications that can continue: publickey,gssapi-with-mic,keyboard-interactive
debug1: Next authentication method: keyboard-interactive
debug1: read_passphrase: can't open /dev/tty: No such file or directory
Duo two-factor login for user
Enter a passcode or select one of the following options:
1. Duo Push to +number
Passcode or option (1-1): <yubikey output>
debug1: Authentication succeeded (keyboard-interactive).
debug1: Entering interactive session.
prompt $>
When using Tera Term, I can only configure a single authentication method, and thus can never complete the kbdi option.
It would be nice if Tera Term supported this chaining - I've been unable to find anything in the manual about doing partial authentication.
Tera Term
I'm trying out Tera Term, and need to connect to a server that first offers password auth, and then switches to keyboard interactive for the 2-factor stage.
If I use OpenSSH (the .exe available on Windows 10), the debug logs look like:
When using Tera Term, I can only configure a single authentication method, and thus can never complete the kbdi option.
It would be nice if Tera Term supported this chaining - I've been unable to find anything in the manual about doing partial authentication.