19 lines
443 B
Nix
19 lines
443 B
Nix
{ config, pkgs, ... }:
|
|
|
|
{
|
|
services.udev = {
|
|
packages = [ pkgs.yubikey-personalization ];
|
|
# extraRules = ''
|
|
# ACTION=="remove",\
|
|
# ENV{ID_BUS}=="usb",\
|
|
# ENV{ID_MODEL_ID}=="0407",\
|
|
# ENV{ID_VENDOR_ID}=="1050",\
|
|
# ENV{ID_VENDOR}=="Yubico",\
|
|
# RUN+="${pkgs.systemd}/bin/loginctl lock-sessions"
|
|
# '';
|
|
};
|
|
security.pam.services = {
|
|
login.u2fAuth = true;
|
|
sudo.u2fAuth = true;
|
|
};
|
|
}
|