RCDevs OpenOTP Server provides two-factor authentication with one-time passwords (OTP). It supports OATH RFC-4226 HOTP (Event-based) and TOTP (Time-based), OCRA (Challenge-based), Mobile-OTP, YubiKey Software/Hardware Tokens, SMSOTP, MailOTP, and OTP lists. It provides a SOAP/XML, RADIUS, and OpenID APIs and integrates into your LDAP (OpenLDAP, Novell, ActiveDirectory). It works with Web applications, VPNs, Linux PAM, Microsoft, and more. It is composed of the RCDevs WebADM server application, the OpenOTP SOAP service, the OpenOTP Radius Bridge, the User Self-service Desk, and Token Self-enrollemnt end-user Web application. VMWare appliances and Web demos are available.
|Tags||Security OTP OATH SMSOTP Two-Factor 2FA Authentication motp mobile otp tokens|
|Licenses||Freeware for non commercial use|
|Operating Systems||Unix Linux|
OpenOTP includes a new OTP Type (PROXY) to enable automatic forwarding of login requests to a third-party RADIUS server.
This functionality allow...
Release Notes: This major release includes several important new features, including support for multiple Tokens per user, new OTP fallback methods, a new simpleLogin API, and a new RadiusBridge.
Release Notes: This release adds support for geolocalization and IP location-based policies, adds a new XML-RPC API, improves logging, and fixes OCRA Tokens.
Release Notes: SMSOTP and MailOTP support for sending OTPs to several numbers/addresses per-user. MailOTP subject can be customized. The user blocking management was enhanced. Blocking alerts were added. An HOTP resync problem was fixed. A PSKC export problem was fixed. New requests are optionally allowed when a session is already started after a delay of 5 seconds (the existing session is dropped the and user does not have to wait for the challenge timeout). A 'Service Name' setting was added for customizing the Google Authenticator display name. A Manager function was added for checking user blocking status.
Release Notes: This version is fully compliant with WebADM 1.2 and supports the new WebADM Manager Interface. A JSON-RPC interface was added for the OpenOTP authentication API. SMS OTP supports concatenated SMS for messages longer than 140 chars. A HOTP manual resync issue was fixed. New requests are now allowed when a session exists after a delay of 10 seconds. The existing session is dropped and the user does not have to wait for the challenge timeout to expire.
Release Notes: A JSON Web API was added. SMTP support was added. A WSDL namespace issue when imported in VisualStudio .NET was corrected. TOKEN, LIST, and LASTOTP fallback methods are now allowed with any OTPType. The fallback is automatically disabled if the user data are missing. SMS and Mail OTP support prefetched delivery mode (next OTP is send after authentication). LASTOTP has an expiration time. Major code rewrites, optimizations, and OTP fallback changes were made.