With the last 22.214.171.124 edition, huge AD are now much better supported.
Put all the users you want to synchronize in one or two groups, set the Base DN to the value that point to company.org, and it should do the works.
Keep us in touch,
Hello, as writen in the readme file, the issuer can be changed using the following option : multiotp -config issuer=my_new_issuer
(this will change the issuer= attribute in the config file multiotp.ini)
Hello, and thanks a lot for your feedback and your support.
Maintaining and improving our open source solution take time, and we set priorities on features that are supported by PayPal donation.
Your suggestion of customizing login text and …
Hello, as the token generator (probably your mobile phone) and the token server are not always exactly synchronized at the second, we need to have a "max time window" in order to be able to accept an OTP from a token that is not issue exactly at the…
Hello Takabow, please disable also permanently the display log option (multiotp -config display-log=0), because ntlm_auth expects to receive NT_KEY and receive LOG 2018... instead!
multiotp.php is stripped and everything is included in one file in …
FreeRADIUS parses the stdout in order to extract the NT_KEY information provided by multiotp. Please disable the display of PHP Warning/Notice/Information on the stdout and put them in a log file only. The warning " Module 'mbstring' already…
You have to give the full path to the multiotp file, which is in this case:
Alternatively, you could type the following:
And multiotp is now…
Hello, control:Auth-Type == MS-CHAP is the problem, replace MS-CHAP with mschap
Content for policy.d:
multiotp_prefix = ''
# This test force multiOTP for any MS-CHAP(v2),CHAP and PAP attempt
We need more detail please.
Which version of Linux distribution are you using ?
Which version of FreeRADIUS ?
Which version of multiOTP open source (multiotp.php -v), or do you use our open source virtual appliance (which version) ?
Starting with version 126.96.36.199, if multiOTP files are installed on a Linux machine, the data folders will always be under /etc/multiotp/ (/etc/multiotp/config, /etc/multiotp/users/, ...)
The last version 188.8.131.52 is available here: h…
We have done a test with the same server: Windows Server 2012R2 with All Updates, Has AD DS role, DNS role. (Primary Domain Controller).
Could you please check with the version 184.108.40.206 which is available for download on http://…
We were able to reproduce the problem and we found the issue, the new 220.127.116.11 version is available on http://download.multiotp.net/
Regards and thanks a lot for your valuable feedback.
Any comments welcome.
*** I KEEP THIS ANSWER HERE TO HAVE THE FULL STORY, BUT THIS IS NOT THE SOLUTION ***
The Visual C++ Redistributable for Visual Studio 2015 x86 or x64 should be integrated, but it could be possible that there is a problem here. Try to download sepa…
Hello, no, SquirrelIT don't do anything about PHP.
What is the exact process, and when does the error appears ?
After the installation process, you should have a C:\multiOTP directory, right ?
If you open a command line window, you go in C:…
What did you type as the password for this user ?
Based on your configuration (default-request-prefix-pin=1 and default-request-ldap-pwd=1), the password of the user should be: [AD password] + [token displayed on Google Authent…