Skip to content

Thomas Wilde Tech

Linux

Thomas Wilde Tech

Home
AWS
AWS
- Lightsail / EC2
  Lightsail / EC2
- Host site on S3 Bucket
  Host site on S3 Bucket
  - Setting up S3 Buckets
  - Custom Domain and HTTPS
- RDS
  RDS
  - Connect SQL Workbench to RDS
- SES (Simple Email Services)
  SES (Simple Email Services)
Software Development
Software Development
- NodeJS
  NodeJS
  - Basics
- Angular
  Angular
  - Setup
  - Templates and Component Libaries
    Templates and Component Libaries
    
    Overview
  - Project Structure
  - Environment Configuration
  - Components
    Components
    
    Communication
    
    Alerts
  - Libraries
    Libraries
    
    Chart.js
  - Framework Components
    Framework Components
    
    material
    material
    
    Table
    
    ng-bootstrap
    ng-bootstrap
    
    Table
- Spring Boot
  Spring Boot
  - Project Structure
  - Entity
    Entity
    
    Entity Properties
- Docker
  Docker
  - Dockerizing an application
- Github
  Github
  - Workflows
    Workflows
    
    Deploy to GitHub Pages
Home Server
Home Server
Projects
Projects
- ESPN Fantasy Football API
  ESPN Fantasy Football API
Tags
Blog
Blog
- Archive
  Archive
  - 2025
  - 2024
  - 2023
- Categories
  Categories
  - Angular
  - Artifact Repository
  - CasaOS
  - ESPN Fantasy Football API
  - Flutter
  - Gradle
  - Home Server
  - Immich
  - JPro
  - JavaFX
  - Linux
  - Linux Desktop
  - SQL
  - Serverless
  - Spring Boot
  - SpringBoot
  - Stripe
  - Umbrel
  - YouTube

Linux¶

January 6, 2025
in Linux
1 min read

Sudo Two-Factor Authentication

This can be done using PAM (Pluggable Authentication Modules).

Install libpam-google-authenticator.

sudo apt update
sudo apt install libpam-google-authenticator

Set up Google Authenticator

google-authenticator

yes to time based tokens.
Scan the QR code with your prefered authenticator app.
Save the emergency backup codes in a secure place.

Edit the PAM configuration for sudo.

sudo nano /etc/pam.d/sudo

Add the following line at the top (before any other auth lines)

auth required pam_google_authenticator.so

Test the setup

sudo ls