Comments (4)
Hello,
Whats is the window time of the SafeNet OTP 110 ? 30 seconds, or 60 seconds ?
If the Window time is 60 seconds:
Google Authenticator only support window time of 30 seconds, and just ignore this parameter, even if it's mentionned in the provisioning QRcode.
If the Window time is 30 seconds:
An internal clock is installed in every hardware token, and this internal clock is adjusted when the token is manufactured, but during its lifetime, the time can be shifted. multiOTP manage that, as it resync internally the delta time of the token everytime an authenticatzion is done. But of course, the displayed OTP code can be different on your token and on Google authenticator, because the hardware internal clock can have a few minutes differences with the "real" time used by your smartphone (which is always synchronized).
If the internal clock of the SafeNet token is a few minutes away, you will have to resync it.
In order to do that, when you have to type the OTP code, instead of typing only [OTP], please type two consecutive OTP codes, seperated by [space] : [OTP1] + [space] + [OTP2]
In the corresponding user file /etc/multiotp/users/myuser.db, you should find now the correction time parameter delta_time=nnn
Regards,
from multiotp.
Hello,
I get the following results when I try to resync my token (the time window is 30 seconds).
# multiotp -resync <USERNAME> <TOKEN1> <TOKEN2>
LOG 2023-09-01 10:53:30 warning (user <USERNAME>) User Error: authentication failed for user <USER>
LOG 2023-09-01 10:53:30 warning (user <USERNAME> User Info: *(authentication typed by the user: <TOKEN1>)
99 *ERROR: Authentication failed (and other possible unknown errors)
The same happens when I'm trying to do the resync via the webGUI.
from multiotp.
Hello,
What is the content of the /etc/multiotp/users/.db (at least delta_time, last_login, and token_algo_suite) ?
You can try to edit the file and change the last_login value to 0.
Let's say if you have tried to log-in with Google Autenticator at time T0 and your SafeNet token is 5 minutes late, you cannot force a resync with an already existing value, which means you will have to wait at least 5 minutes.
If you cannot solve the, except if you are sending us the token and the PKSC definition file, we cannot do anything more for you, as I would say that there is an issue with your SafeNet tokens, or the content of the PKSC definition file. Are these tokens brand new ?
Regards,
from multiotp.
No answer from the last three weeks, unable to reproduce.
from multiotp.
Related Issues (20)
- Cache too old for user HOT 5
- cant login in docker image HOT 1
- Wrong One-Time Passcode (OTP) Issue During Login HOT 4
- Migration to organization HOT 5
- Authentication Issue with MultiOTP, RADIUS, and AD Password Prefix for CHAP Protocol HOT 2
- Rest API HOT 1
- fail when password is expired HOT 4
- RDP (mstsc.exe) keeps crashing with Windows Server 2012 R2 HOT 1
- Slow Response HOT 4
- RDweb + multiOTP problem Windows 2022 HOT 11
- 502 Bad Gateway HOT 5
- TOTP Token timestep is 0 when a without2fa ldap synced user is moved to the TOTP active ldap group HOT 7
- OTP code length change HOT 5
- Backup needs _temp folder - included in zip file? HOT 1
- Feature request : Hide default Username / Password after changed #146 isn't working HOT 1
- Problem Syntax Username from RDWeb - MultiOTP HOT 6
- LDAP sync not working with low privilege account? HOT 4
- Few questions about multiOTP HOT 1
- Wrong one-time Password HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from multiotp.