When a normal user runs google_authenticator the file .google_authenticator is own by root
-r--------. 1 root nogroup 117 Sep 27 12:29 .google_authenticator
In /var/log/secure I see :
ep 27 12:21:30 localhost sshd(pam_google_authenticator)[8475]: Secret file “/user/undergrads/John/.ssh/google_authenticator” must be owned by “John”
I have
google-authenticator-1.07-1.el8.x86_64
UPDATE:
Any file a user creates in .ssh is own by root.
How do I fix that?