starred/openvpn-otp
1
0
Fork 0
mirror of https://github.com/evgeny-gridasov/openvpn-otp.git synced 2026-04-25 13:25:56 +03:00
Code Issues 19 Projects Releases 1 Packages Wiki Activity

[GH-ISSUE #12] Rejects passwords #8

New issue
Closed
opened 2026-02-25 22:30:44 +03:00 by kerem · 7 comments
kerem commented 2026-02-25 22:30:44 +03:00
Owner
Copy link

Originally created by @haarp on GitHub (Apr 6, 2016).
Original GitHub issue: https://github.com/evgeny-gridasov/openvpn-otp/issues/12

Hello,

I'm trying to set this up on pfSense. I managed to get it compiled and loaded, but all I'm ever getting are failed authentications. Is there some way to increase log verbosity so I can see what's going on? It would be very useful if this plugin could log (temporarily) what passwords it expects and which ones it receives.

Thanks!

Originally created by @haarp on GitHub (Apr 6, 2016). Original GitHub issue: https://github.com/evgeny-gridasov/openvpn-otp/issues/12 Hello, I'm trying to set this up on pfSense. I managed to get it compiled and loaded, but all I'm ever getting are failed authentications. Is there some way to increase log verbosity so I can see what's going on? It would be very useful if this plugin could log (temporarily) what passwords it expects and which ones it receives. Thanks!
kerem closed this issue 2026-02-25 22:30:44 +03:00
kerem commented 2026-02-25 22:30:44 +03:00
Author
Owner
Copy link

@evgeny-gridasov commented on GitHub (Apr 12, 2016):

This is what I actually wanted to implement some time later.. may be it is the time to do it now. I'll see what I can do.

<!-- gh-comment-id:208727375 --> @evgeny-gridasov commented on GitHub (Apr 12, 2016): This is what I actually wanted to implement some time later.. may be it is the time to do it now. I'll see what I can do.
kerem commented 2026-02-25 22:30:44 +03:00
Author
Owner
Copy link

@calve commented on GitHub (Apr 12, 2016):

Doesn't pfSense comes bundle with SELinux ? In which case you may read https://github.com/evgeny-gridasov/openvpn-otp#selinux

<!-- gh-comment-id:208811820 --> @calve commented on GitHub (Apr 12, 2016): Doesn't pfSense comes bundle with SELinux ? In which case you may read https://github.com/evgeny-gridasov/openvpn-otp#selinux
kerem commented 2026-02-25 22:30:44 +03:00
Author
Owner
Copy link

@haarp commented on GitHub (Apr 12, 2016):

@calve pfSense is based on FreeBSD

<!-- gh-comment-id:208960531 --> @haarp commented on GitHub (Apr 12, 2016): @calve pfSense is based on FreeBSD
kerem commented 2026-02-25 22:30:45 +03:00
Author
Owner
Copy link

@calve commented on GitHub (May 13, 2016):

You can try adding something like
LOG("expected %s read %s", secret, vpn_secret); around https://github.com/evgeny-gridasov/openvpn-otp/blob/master/src/otp.c#L410

<!-- gh-comment-id:219025638 --> @calve commented on GitHub (May 13, 2016): You can try adding something like `LOG("expected %s read %s", secret, vpn_secret);` around https://github.com/evgeny-gridasov/openvpn-otp/blob/master/src/otp.c#L410
kerem commented 2026-02-25 22:30:45 +03:00
Author
Owner
Copy link

@kobuki commented on GitHub (May 16, 2016):

Same issue here. No totp passwords are accepted at all. Cross-checked mobile-generated 6-digit codes with ones generated on the server. They always match. With or without pin, doesn't work at all.

EDIT: I found the issue. I've set totp_step=60 but that's not compatible with the phone app. Setting it to totp_step=30 works.

<!-- gh-comment-id:219577216 --> @kobuki commented on GitHub (May 16, 2016): Same issue here. No totp passwords are accepted at all. Cross-checked mobile-generated 6-digit codes with ones generated on the server. They always match. With or without pin, doesn't work at all. EDIT: I found the issue. I've set totp_step=60 but that's not compatible with the phone app. Setting it to totp_step=30 works.
kerem commented 2026-02-25 22:30:45 +03:00
Author
Owner
Copy link

@evgeny-gridasov commented on GitHub (May 18, 2016):

Implemented debug mode in 0d6099e
Add debug=1 to your settings to turn debug mode on.

<!-- gh-comment-id:220014486 --> @evgeny-gridasov commented on GitHub (May 18, 2016): Implemented debug mode in 0d6099e Add debug=1 to your settings to turn debug mode on.
kerem commented 2026-02-25 22:30:45 +03:00
Author
Owner
Copy link

@bbrendon commented on GitHub (Sep 5, 2017):

@haarp how did you get this to compile on pfsense? Can you provide some guidance? I've been trying on freebsd thinking I can copy it to pfsense : https://github.com/evgeny-gridasov/openvpn-otp/issues/18

<!-- gh-comment-id:327285892 --> @bbrendon commented on GitHub (Sep 5, 2017): @haarp how did you get this to compile on pfsense? Can you provide some guidance? I've been trying on freebsd thinking I can copy it to pfsense : https://github.com/evgeny-gridasov/openvpn-otp/issues/18
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
v1.0
Labels
Clear labels   
pull-request

Mirrored from GitHub Pull Request

No labels
pull-request
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/openvpn-otp#8
No description provided.