Cloudflared Tunnel | SSH and 2-FA

stefan.knorr · June 15, 2022, 9:35am

Hello,

how is it possible to secure SSH access via Cloudflared Tunnel with the Google Authenticator?

I am asked for a username and password, but there is no third field where I can enter a Token/TAN.

Thanks in advance

Cyb3r-Jak3 · June 15, 2022, 9:41pm

Are you trying to use browser rendered SSH or via cloudflared access ssh ...?

stefan.knorr · June 20, 2022, 7:07am

We use browser rendered SSH.

Cyb3r-Jak3 · June 20, 2022, 2:06pm

I’m guessing it’s not supported. Given the way that you have to set up openssh-server to use 2FA, Cloudflare is unable to complete the process. What you could try is short-lived certs which means all authentication is done with Cloudflare so you would use 2FA with your IDP.

Topic		Replies	Views
Cloudflare tunnel SSH security Cloudflare Tunnel CloudflareTunnel	0	1370	June 30, 2022
SSH server with cloudflared - user login issue Cloudflare Tunnel	1	1970	July 4, 2023
Second app with ssh browser rendering asks for private key Cloudflare Tunnel	1	1136	May 24, 2023
SSH access using tunnels Cloudflare Tunnel CloudflareTunnel	4	7444	November 22, 2022
SSH Tunnel with browser rendering Cloudflare Tunnel	4	2157	March 29, 2023

Cloudflared Tunnel | SSH and 2-FA

Related topics