By using AWS re:Post, you agree to the Terms of Use

Does Transfer Family support Password and SSH key authentication together in one single login ?

0

Hello Team, I am working on a AWS Transfer Family Solution (SFTP) and need a confirmation that whether this service can support both password and ssh key based authentication at same time (i.e in one login attempt when user passes both using any sftp client like filezilla or winscp). I used lambda based identity provider and identified that when I pass both password and ssh key in Filezilla, password is never passed to lambda and so code logic have to assume it is ssh key based authentication. Can someone please provide any advise !!

1 Answer
0
Accepted Answer

Hello Sumit@,

AWS Transfer service doesn't support both Password and SSH key based authentication for one login attempt. Users can authenticate either via SSH keys or Passwords but not both for the same login session. However, you could implement Multifactor authentication techniques when using Custom or Lambda IDP authentication type servers. An example implementation is mentioned in this blog post [1] where the User is authenticated against Okta with Password + MFA token.

References:

[1] https://aws.amazon.com/blogs/storage/using-okta-with-multi-factor-authentication-for-aws-transfer-for-sftp/

Let me know if you have further questions.

-- Sagar

EXPERT
answered 2 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions