Page 1 of 1

Feature request: Better OTP support

Posted: Fri Nov 24, 2017 7:33 am
by Kreeblah
I have my VPN set up to require a password in addition to a one-time password that gets appended to the password for authentication. Right now, whenever I need to connect, I'm typing my credentials plus the OTP, but it'd be nice to be able to save my username and password, and be able to enter the OTP into a separate field on each connection and have Viscosity append it to the password before submission.

Similarly, if my connection drops and Viscosity attempts to automatically reconnect, it fails because the OTP has expired, so this plus having it prompt for a new OTP on reconnection would be awesome.

Thanks!

Re: Feature request: Better OTP support

Posted: Mon Nov 27, 2017 2:12 pm
by James
Hi Kreeblah,

Viscosity actually has proper two-factor OTP support via OpenVPN's challenge/response protocol. It sounds like your OpenVPN setup is accepting your OTP as part of the username/password prompt instead of making use of the protocol. Changing your server setup to use challenge/response will allow you to save your username/password in Viscosity and have a seperate prompt for your OTP as required.

Please see the following forum post for some examples:
https://www.sparklabs.com/forum/viewtop ... 1279#p3677

Cheers,
James