Feature request: Better OTP support

Suggestions/comments/criticisms are welcome here

Kreeblah

Posts: 2
Joined: Fri Nov 24, 2017 7:19 am

Post by Kreeblah » Fri Nov 24, 2017 7:33 am
I have my VPN set up to require a password in addition to a one-time password that gets appended to the password for authentication. Right now, whenever I need to connect, I'm typing my credentials plus the OTP, but it'd be nice to be able to save my username and password, and be able to enter the OTP into a separate field on each connection and have Viscosity append it to the password before submission.

Similarly, if my connection drops and Viscosity attempts to automatically reconnect, it fails because the OTP has expired, so this plus having it prompt for a new OTP on reconnection would be awesome.

Thanks!

James

User avatar
Posts: 1879
Joined: Thu Sep 04, 2008 9:27 pm

Post by James » Mon Nov 27, 2017 2:12 pm
Hi Kreeblah,

Viscosity actually has proper two-factor OTP support via OpenVPN's challenge/response protocol. It sounds like your OpenVPN setup is accepting your OTP as part of the username/password prompt instead of making use of the protocol. Changing your server setup to use challenge/response will allow you to save your username/password in Viscosity and have a seperate prompt for your OTP as required.

Please see the following forum post for some examples:
https://www.sparklabs.com/forum/viewtop ... 1279#p3677

Cheers,
James
James Bekkema
Viscosity Developer

Web: http://www.sparklabs.com
Support: http://www.sparklabs.com/support
Twitter: http://twitter.com/sparklabs
2 posts Page 1 of 1