Skip to main content
 
 
 

Strengthens Remote Access Security with Time-Based One-Time Passcode (TOTP) Authentication on All SSH Servers

3TECH has completed the deployment of Time-Based One-Time Passcode (TOTP) two-factor authentication for all bastion hosts.

Effective immediately, every SSH login now requires both a valid SSH key/password and a 6-digit code from an authenticator app (Google Authenticator).

This eliminates the risk of stolen credentials being used alone.

    Key details:
  • Implemented via Google Authenticator PAM on all bastion Linux fleets
  • Fully compatible with existing SSH keys
  • Emergency codes available

Our goal is simple: even if an attacker steals your private key, they still can’t get in without your phone.

This strengthens our zero-trust posture - aligned defense-in-depth for remote access to production, cloud, and on-premise environments.