Does Transfer Family support Password and SSH key authentication together in one single login ?

0

Hello Team, I am working on a AWS Transfer Family Solution (SFTP) and need a confirmation that whether this service can support both password and ssh key based authentication at same time (i.e in one login attempt when user passes both using any sftp client like filezilla or winscp). I used lambda based identity provider and identified that when I pass both password and ssh key in Filezilla, password is never passed to lambda and so code logic have to assume it is ssh key based authentication. Can someone please provide any advise !!

AWS
Sumit
질문됨 2년 전1907회 조회
2개 답변
0
수락된 답변

Hello Sumit@,

AWS Transfer service doesn't support both Password and SSH key based authentication for one login attempt. Users can authenticate either via SSH keys or Passwords but not both for the same login session. However, you could implement Multifactor authentication techniques when using Custom or Lambda IDP authentication type servers. An example implementation is mentioned in this blog post [1] where the User is authenticated against Okta with Password + MFA token.

References:

[1] https://aws.amazon.com/blogs/storage/using-okta-with-multi-factor-authentication-for-aws-transfer-for-sftp/

Let me know if you have further questions.

-- Sagar

AWS
전문가
답변함 2년 전
profile picture
전문가
검토됨 4달 전
0

Hi Sumit,

AWS Transfer Family now supports the ability to require multiple methods of authentication in a single login, including the ability to require BOTH password and public key. You can learn more about how to configure multiple methods of authentication using a customer identity provider in Step 3 of our Create an SFTP-enabled server documentation. Please let us know if you have any questions.

– AWS Transfer Family

AWS
전문가
답변함 일 년 전
profile picture
전문가
검토됨 4달 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠