adminf

About

Username
adminf
Joined
Visits
112
Last Active
Roles
Administrator

Comments

  • Please note that Email account recovery is available (you have to send "email" and the account)
    in roadmap Comment by adminf May 31
  • Hello Burghy,

Internal roadmap of the open source version of multiOTP is adjusted depending: 
 * the support/donation we have from the community 
 * the internal "free" time we have to implement new featur…
    in roadmap Comment by adminf May 31
  • The last multiOTP open-source OVA image (2022-05-19, 5.9.0.1) is available here : https://download.multiotp.net/ova/
  • Hello Andy,
Thanks for the feedback, this will be corrected in the next commit.
Regards,
  • Hello,
The last 5.8.8.4 version is now working smoothly with Synology and docker.
Please define unused ports to map ports 80 and 443 (for example 44480 and 44443), and prefer using port 44443 (ssl) for multiTOTP configuration.&#1…
  • Hello,
The last 5.8.8.4 version is now working smoothly with Synology and docker.
Please define unused ports to map ports 80 and 443 (for example 44480 and 44443), and prefer using port 44443 (ssl) for multiTOTP configuration.&#1…
  • Thanks for the feedback.
    in RD Gateway Comment by adminf February 2
  • Hello,
This is not on our current roadmap, thank you.
  • Done. Thx for the feedback
    in Docker File Comment by adminf May 2021
  • Hi Derek,

Thanks for your valuable support.

Using your eDirectory test bed, we have been able to fix the eDirectory compatibility in the version 5.8.2.1 of multiOTP open source !

We have adapted and…
  • Hello Andy, 
Did you setup the default_request_prefix_pin=1 before syncing the first time ? 
default_request_prefix_pin value is applied during the creation of the user only, but it will not change the option for the account if the a…
  • We have clearly identified a bug in the version 5.8.1.0 of multiOTP, which was related to the current time and the multibyte handling of the length of characters. 
A new 5.8.1.1 version has been immediately published the 2021-03-14 before no…
  • Hello,
The issue has been fixed already, and the new 5.8.1.1 has fixed that.
Regards,
  • Hello,
Currently, you can have a look here (thanks Roman for the nice work):
 Remote Desktop Web Access (RDWeb) mit MultiOTP sichern (https://roman.gallauner.at/?p=886)
 MultiOTP Authentication Provider für ADFS 3.0 (https://…
  • Hello,
A push notification, that will work also for other radius devices, is planned for end of Q4 2020, at least for Android (iOS validation should take a few more weeks).
    in RD Gateway Comment by adminf August 2020
  • Sounds good, good scripting :-)
  • Hello, that's not too bad if you are in a HA master/slave structure, and you want that the second VM has to be the backup of the first one.
This was one of the idea of why to keep a file based backend.
If you want a "cluster&quo…
  • Hello idoc,
 
Due to security reasons, we cannot retrieve the username passed from the RDP client from our third party plugin.
 
It could be possible to create a specific registry with a default value before the usern…
  • HOW CAN I UPGRADE FROM A PREVIOUS VERSION ? 
!!! Be careful when you upgrade your multiOTP open source Virtual Appliance !!! 
The multiOTP open source Virtual Appliance is using the files in
raspberry/boot-part/multiotp-tree…
  • HOW CAN I UPGRADE FROM A PREVIOUS VERSION ? 
!!! Be careful when you upgrade your multiOTP open source Virtual Appliance !!! 
The multiOTP open source Virtual Appliance is using the files in
raspberry/boot-part/multiotp-tree…
  • An ugly hack could be to simulate a DC server on the multiOTP server, and therefore, we could receive the NTLM hash of any users, and we could use them to compare the MSCHAPv2 result, but it's really not very clean.
Regards
  • Hello,
Unfortunately, we cannot re-use the MSCHAPv2 to authenticate against the AD using LDAP/AD, as MSCHAPv2 doesn't contains a hash of the password, but a hash (calculate using the password) of a dynamic negotiated content.
Regards…
  • ldap_in_group : the user must be at least in one of these groups to be synchroniued. Leave empty if you want every users of the baseDN 
ldap_groups_dn : is not used yet, for future use, to give another DN for the groups the users are in (now…
  • Hello,
If you want to upgrade the VM provided on www.multiotp.net, using the last build 5.0.3.7, please extract the following files from /raspberry/boot-part/multiotp-tree/usr/local/bin/multiotp and put them into /usr/local/bin/multiotp:&…
  • Hello,
If you want to upgrade the VM provided on www.multiotp.net, using the last build 5.0.3.7, please extract the following files from /raspberry/boot-part/multiotp-tree/usr/local/bin/multiotp and put them into /usr/local/bin/multiotp:&…
  • When Seamoon will provide PSKC provisioning file, it will be possible to automatically import the seeds with multiOTP.
Regards
  • Here is the answer of Seamoon: (...)
Normally we based the clients requirement, we can provide the hex clear seed, or clear Based64 seed.
and we plan to provide pskc format seed at 2017. 

So please just ask your clie…
  • The RFC 4226 is the standard describing how the HOTP is calculated, this is already implemented and it's not a problem.

But Seamoon don't use a standard format for their seeds file, which is the problem to import their tokens.&#…
  • Are you using a Seamoon KingKey ? Only these tokens from Seamoon have been tested, with the following parameters: TOTP, 6 digits, 60 seconds time interval. The seeds were extracted manually from the SMD file provided.
  • Hello,
We have asked the question to Seamoon, previous oath/hotp SMD file was provided in this format by Seamoon: 797000942,0AGWmrbqNODDWhhVCtCD
(serial number, and seed in Base64).
In your example, the serial number is 79510…