News

Today we published the document describing the API of the LinOTP 2 webservice that is used to do the authentication. This will enable you to simply enhance any web application to strong two factor authentication by accessing the LinOTP 2 authentication webservice. This is as easy as calling a URL and interpreting the response of the LinOTP 2 server. Your application may grant access to the user based on this response.

Thus you can use LinOTP 2 to protect your web applications without having to fiddle around with additional authentication protocols.

The document can be downloaded here.

LinOTP 2.0.1 is now also available as a ready-to-run vmdk virtual image.

It is based on ubuntu server 9.10. Users are held in the /etc/passwd and tokens are stored in a mysql server. This virtual image also provides ready PAM configuration /etc/pam.d/linotp-auth. The 'login' is authenticated against LinOTP - other PAM configurations may be easily configured for OTP.

Thus a usage scenario could be like this:   

1. Create a virtual machine based on this image.
2. Boot the machine. It will get its IP via DHCP.
3. Login as root via ssh.
4. Use the command line tool linotpadm.py to import and assign tokens. LinOTP runs on https://localhost:443. You may assign a token to an existing user from /etc/passwd like the user 'linotp'.
5. Go to the console login screen and login via OTP.

The Login credentials are as follows:

root:VeiXee0J
linotp:Tie5thu2
linotp admin:Ohc3uag0
mysql root:oB6uajei
mysql linotp:xajooZ3O

You may download the 7zipped vmdk image here. 

Update: A persistent udev rule in the vmdk image might avoid eth0 from coming up. Please set the MAC address of the virtual machine to "54:52:00:42:2c:4e". Using vmplayer you might do this by replacing/adding the following two lines in your vmx file:

A new project meeting set the direction for further developments of LinOTP. A new release will improve the multi-client capabilities. Also some minor code improvements will be implemented. A virtual image (vmdk) of a ready installed LinOTP 2 Community Edition will be available soon.

We have please in announcing that we just released a new shiny version 2.0.1 of LinOTP2.

This is a short summary of the improvements in the community edition:

• LinOTPd server supporting multiple processes
• Added modular OTP-Calculation to support several different OTP-Algorithms
• Added support for mOTP Tokens (see http://motp.sourceforge.net)
• Added support for python 2.5
• Improved logging functionality with Apache2+wsgi
• Added possibility to do client cert authentication with the Management Clients

The enterprise edition additionally has the following improvements:

• include UserIdResolver for LDAP (Active Directory, OpenLDAP, eDirectory) and SQL

• included FreeRADIUS Auth module: rlm_linotp2
• Added possibility to change the duration of the OTP value beeing displayed on an eToken NG-OTP
• Installers for Windows clients
• Improved manual:
  • • Added documentation and sample certificate authority
    • Added samples for Apache2 to run with SSL / Client Certs

You may download the community edition freely on this website.