[Info-vax] VMS and MFA?
Phillip Helbig undress to reply
helbig at asclothestro.multivax.de
Wed Aug 19 05:20:27 EDT 2020
In article <rhik59$9mi$1 at dont-email.me>,
Jan-Erik Söderholm <jan-erik.soderholm at telia.com>
writes:
> As in many other places, our VMS systems lives in a much larger
> non-VMS environment. Lately, MFA (Multi Factor Authentication)
> https://en.wikipedia.org/wiki/Multi-factor_authentication has
> been introduced at this company. So when, like connecting to
> the Citrix remote environment, I get a SMS ("text") with a code
> that needs to be entered in the login sequence.
>
> Now, I have not seen any ready-made solution for this for VMS.
> I know about the LDAP based account/password synchronisation
> against (usually) Microsoft AD. But that is not MFA as such.
Probably most VMS systems affected by this have some sort of MFA in
order to get to a session (perhaps recorded) where one can get to VMS
via ssh or whatever.
It shouldn't be too difficult to roll your own. Many mobile-phone
providers have the possibility to convert emails to SMS. If your VMS
system can send email, then you could compute some random number in
SYS$SYLOGIN, send it as an SMS, and then READ/PROMPT="_code: " and then
exit if nothing correct is entered (quickly enough).
More information about the Info-vax
mailing list