security.pam.u2f.enable
Enables U2F PAM (pam-u2f) module.
If set, users listed in
$XDG_CONFIG_HOME/Yubico/u2f_keys (or
$HOME/.config/Yubico/u2f_keys if XDG variable is
not set) are able to log in with the associated U2F key. The path can
be changed using security.pam.u2f.authFile option.
File format is:
<username1>:<KeyHandle1>,<UserKey1>,<CoseType1>,<Options1>:<KeyHandle2>,<UserKey2>,<CoseType2>,<Options2>:...
<username2>:<KeyHandle1>,<UserKey1>,<CoseType1>,<Options1>:<KeyHandle2>,<UserKey2>,<CoseType2>,<Options2>:...
This file can be generated using pamu2fcfg command.
More information can be found here.
- Type
boolean- Default
false- Declared
- <nixpkgs/nixos/modules/security/pam.nix>