OpenOTP plugin windows login
270 views
Skip to first unread message
johan joly
Apr 2, 2014, 6:09:08 AM4/2/14
to rcdevs-t...@googlegroups.com
Hello,
We are testing the solution OpenOTP with the pluggin Windows credidentials.
All works good and we received the OPT code by sms and the users can logon in theirs sessions.
But we want use the OTP pluggin windows logon ONLY with external connexion.
We don't have need to display this OTP logon when the users come from intranet !
This is possible to exclude a subnet somewhere in OpenOTP to exclude the display of OTPlogon when the user come from intranet ?
Thank you,
Best Regards,
Johan
Administrators
Apr 2, 2014, 9:48:12 AM4/2/14
to rcdevs-t...@googlegroups.com
Hello,
you can look at the WebADM Administrator Guide, in the client policies section.
http://www.rcdevs.com/downloads/download.php?type=2&id=WebADM%2FWebADM_Manual.pdf
After you'll have to give a client ID to the Credential Provider.
Note: It's not possible to use both Windows login and Credential Provider when a Credential provider is configured.
OpenOTP Credential Provider does not prompt for the OTP if the policy does not require it.
regards,
you can look at the WebADM Administrator Guide, in the client policies section.
http://www.rcdevs.com/downloads/download.php?type=2&id=WebADM%2FWebADM_Manual.pdf
After you'll have to give a client ID to the Credential Provider.
Note: It's not possible to use both Windows login and Credential Provider when a Credential provider is configured.
OpenOTP Credential Provider does not prompt for the OTP if the policy does not require it.
regards,
johan joly
Apr 23, 2014, 12:40:03 PM4/23/14
to rcdevs-t...@googlegroups.com
Hello,
Thank you very much for your answer.
I use a client policy and it's work but I have a problem with the internal netword option associated with the force setting for internal network.
For exemple : I use this setting -> my internal IP is 10.10.118.21
When I logged into the server the authentication even use OpenOTP authentication (I receive the OTP SMS).
When I use Forced Settings (Default) with OpenOTP.LoginMode=LDAP it's work but this is not the attempt result...
Please help me....
Regards,
Johan
Administrators
Apr 23, 2014, 12:52:47 PM4/23/14
to rcdevs-t...@googlegroups.com
Look in the /opt/webadm/logs/soapd.log and check what source IP is received in the OTP login request.
It's certainly your client not passing the correct source IP.
johan joly
Apr 24, 2014, 3:22:28 AM4/24/14
to rcdevs-t...@googlegroups.com
Hi,
You are right :)
The source IP use is the IP of the server on wich I connect.
For exemple : I'm using 10.10.118.21, the source IP which is use is 172.16.9.42 in ohter word the IP of the server which have the credential provider plugin.
Where can I config this option for use the souce IP of my host and not the one of the server ?
Thank you very much for your help
Regards,
Johan
Administrators
Apr 24, 2014, 4:04:41 AM4/24/14
to rcdevs-t...@googlegroups.com
Now I understand it's with the Windows CP.
Ok the IP is the host itself with the CP.
johan joly
Apr 24, 2014, 4:37:14 AM4/24/14
to rcdevs-t...@googlegroups.com
Do you know if it possible to use the IP of the real source host from the Credential provider and not the local IP where the CP is install?
Thx,
Johan
Reply all
Reply to author
Forward
0 new messages