If you want to subscribe to this forum, use your Facebook account, or send us an email to forum - at - multiotp - dot - net and we will send you back an invitation.

AndreL

About

Username
AndreL
Joined
Visits
67
Last Active
Roles
Administrator

Comments

  • Hello Muzammel, In order to have the new behavior concerning the call of the CheckUserTokenOnServer() method, you only need to upgrade the server to version 5.3.0.3, clients don't have to be upgraded for that (security parameters have always …
  • Hello Sergey, The command line -restore-config has been fixed in the version 5.3.0.3 of multiOTP open source (https://github.com/multiOTP/multiotp/releases/tag/5.3.0.3) Please check it on your side and close this issue if it is resolved. …
  • Hello Muzammel, Thanks for your detailled questions. As I understand, the client of the open source edition is sometimes installed on a non-trusted machine. To answer to your needs, we have provided a new 5.3.0.3 version. Now in client/server m…
  • Hello Sergey, The command line -restore-config has been fixed in the version 5.3.0.3 of multiOTP open source (https://github.com/multiOTP/multiotp/releases/tag/5.3.0.3) Thanks to try it and to keep us in touch. Regards, Andre
  • Hello Muzammel, As long as the cache mode is desactivated, the users data cache are not stored on the client side. The seed is NOT encrypted with encryption_hash. It is encrypted with an encryption key, and the encryption_hash is a non-reversible …
  • Did you change the ntlm_auth variable also, as desribed in the readme ? https://wiki.freeradius.org/guide/multiOTP-HOWTO
  • Hello, Could you please provide us the configuration you have done in FreeRADIUS ? Regards,
  • The new 5.2.0.2 improved the process for huge Active Directory.
  • The feature is now implemented since version 5.0.6.1 (2017-12-04) Regards,
  • Hello, With the last 5.2.0.2 edition, huge AD are now much better supported. Put all the users you want to synchronize in one or two groups, set the Base DN to the value that point to company.org, and it should do the works. Keep us in touch, Re…
  • Hello, as writen in the readme file, the issuer can be changed using the following option : multiotp -config issuer=my_new_issuer (this will change the issuer= attribute in the config file multiotp.ini) Regards,
  • The whole web GUI is integrated in multiotp.server.php, an implementation sample of the web service/GUI. Regards,
    in WebGui Comment by AndreL July 16
  • The whole web GUI is integrated in multiotp.server.php, an implementation sample of the web service/GUI. Regards,
    in Need Help Comment by AndreL July 16
  • Hello, Thanks a lot for your feedback. Regards. Andre
  • Integrating a picture browser in the installer is not in our roadmap. A silent install should also be able to customize the logo, so the multiotp.bmp implementation will remain. Regards,
  • The new 5.1.0.3 release allow some Desktop Agent Customization. Regards,
  • Hello, and thanks a lot for your feedback and your support. Maintaining and improving our open source solution take time, and we set priorities on features that are supported by PayPal donation. Your suggestion of customizing login text and …
  • Hello, Login message will be customisable in the next release. NO customization of the logo is planned, but as it's an open source solution, you can compile the source with your own logo. Regards,
  • Hello thanks for your feedback. We close the case. Probably a file authorization issue. Regards
  • Hello, as we've seen your other question in the forum, we suppose that it's all ok now, that's it ? Regards,
  • Hello, as the token generator (probably your mobile phone) and the token server are not always exactly synchronized at the second, we need to have a "max time window" in order to be able to accept an OTP from a token that is not issue exactly at the…
    in MultiOTP Comment by AndreL February 6
  • Hello Takabow, please disable also permanently the display log option (multiotp -config display-log=0), because ntlm_auth expects to receive NT_KEY and receive LOG 2018... instead! multiotp.php is stripped and everything is included in one file in …
  • Hello, FreeRADIUS parses the stdout in order to extract the NT_KEY information provided by multiotp. Please disable the display of PHP Warning/Notice/Information on the stdout and put them in a log file only. The warning " Module 'mbstring' already…
  • Hello, as much as you have, as long as you have enough place on the disk. The synchronization process can take some time. How many users do you have ? Regards,
  • Hello, You have to give the full path to the multiotp file, which is in this case: /usr/local/bin/multiotp/multiotp.php Alternatively, you could type the following: alias multiotp='/usr/local/bin/multiotp/multiotp.php' And multiotp is now…
  • You are welcome.
  • Hello, for multiotpmschap, your multiotp.php parameters are wrong, you have apparently kept the ntlm_auth parameters instead! Regards, Andre
  • Hello, control:Auth-Type == MS-CHAP is the problem, replace MS-CHAP with mschap Content for policy.d: multiotp_prefix = '' multiotp.authorize { # This test force multiOTP for any MS-CHAP(v2),CHAP and PAP attempt if (…
  • Hello, We need more detail please. Which version of Linux distribution are you using ? Which version of FreeRADIUS ? Which version of multiOTP open source (multiotp.php -v), or do you use our open source virtual appliance (which version) ? MS-C…
  • Hello, the new multiOTP open source virtual appliance 5.0.4.7 in VMware format is available for download: http://download.multiotp.net/vmware/ Thanks in advance for your feedback Regards, Andre