Install the Microsoft Authenticator (or Google Authenticator) from Google Play or App Store on the user’s smartphone. You will see a user QR code to add to the authentication app. In the List of users section, you will see a list of domain users synchronized earlier (AD/LDAP source). Then it is recommended to change it.Ĭonfiguring MultiOTP Two-Factor Authentication for Domain Users Sign-in MUltiOTP web interface ( ) using default credentials (user: admin, password: 1234). It will install multiOTP web management interface. Run webservice_install.cmd as administrator. Multiotp -debug -display-log -ldap-users-sync Multiotp -config ldap-in-group=”2FAVPNUsers” Multiotp -config ldap-server-password="Paa32ssw0rd!" REM Group of users you want to enable OTP for: Multiotp -config ldap-bind-dn="CN=multiotp_srv,OU=ServiceAccounts,OU=Munich,DC=woshub,DC=com" Multiotp -config ldap-base-dn="DC=woshub,DC=com" REM Account for multiOTP authentication in AD: Multiotp -config ldap-port=389 REM Domain controller IP address: Multiotp -config ldap-group-attribute="memberOf" Multiotp -config ldap-group-cn-identifier="sAMAccountName" ![]() Multiotp -config ldap-cn-identifier="sAMAccountName" ![]() Multiotp -config default-request-ldap-pwd=0 Multiotp -config default-request-prefix-pin=0 Using the commands below, we will configure MultiOTP LDAP settings to get users from the Active Directory database. Open the command prompt and go to the directory containing multiotp.exe:
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |