Plain Auth with PIN + OTP

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi,

I'm trying to configure plain auth using PIN + OTP. However, ocserv
seems to be telling me that there are too many digits in the string
I'm providing on the client (openconnect v5.02) end. Providing the OTP
without the PIN allows the user to authenticate successfully
(regardless of what's in column 3 of users.oath).

FWIW, I've also tried using a shorter (2 digit) PIN + OTP with no success.


/etc/ocserv/ocserv.conf:
...
auth = "plain[passwd=/etc/ocserv/passwd,otp=/etc/ocserv/users.oath]"
...

/etc/ocserv/users.oath:
HOTP bob 1234 xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx


Error:
"plain-auth: OTP auth failed for 'bob': Unsupported number of OTP digits"


ocserv --version:
ocserv 0.11.1

Compiled with seccomp, tcp-wrappers, oath, gssapi, PAM, PKCS#11, AnyConnect,
GnuTLS version: 3.3.22


Thanks



[Index of Archives]     [Linux Samsung SoC]     [Linux Rockchip SoC]     [Linux Actions SoC]     [Linux for Synopsys ARC Processors]     [Linux NFS]     [Linux NILFS]     [Linux USB Devel]     [Video for Linux]     [Linux Audio Users]     [Yosemite News]     [Linux Kernel]     [Linux SCSI]


  Powered by Linux