Some research applications offer a command line interface (CLI), like SSH or iRODS. Techniques such as SAML and OIDC, which are used for federated authentication through a web browser, are ill-suited for use on a CLI. For SURF Research Access Management, SURF has developed a solution: a pluggable authentication module (PAM) for CLI applications which allows them to use two factor federated authentication and single sign-on.
Please read the blog introducing PAM web login for more information.
Examples: PAM weblogin
Ready to give it a try?
Refer to the how to connect a PAM web login application.