NEW 4.2.2 VERSION OF 2014-03-03
multiOTP is a PHP class and a powerful command line utility developed by SysCo systèmes de communication sa in order to provide a completely free and easy operating system independent server side implementation for strong two factors authentication solution.
Nowadays, spywares, viruses and other hacking technologies are regularly stolen passwords typed by the user.
By using a strong two factors authentication solution, the stolen passwords cannot be stored and used later anymore because each password (called OTP for One-Time Password) is only valid for one authentication and will failed if used a second time.
Active Directory (or LDAP) integration (NEW in version 4.2.2)
multiOTP can create strong authentication accounts automatically for users that are present in a specific group of the Active Directory (or the LDAP) of the company.
Enhanced integrated web interface (enhanced in version 4.2.2)
multiOTP provides now a web interface in order to import hardware tokens, create accounts, synchronize tokens or unlock accounts.
MS-CHAP and MS-CHAPv2 support (NEW in version 4.2)
multiOTP supports now MS-CHAP and MS-CHAPv2 encrypted authentication requests.
Tokens resynchronisation without prefix code (NEW in version 4.2)
multiOTP doesn't need anymore the prefix code in order to resynchronise hardware tokens.
OATH certified (since version 4.1)
multiOTP is now OATH certified for HOTP/TOTP and is compatible with any token that is also certified. PSKC encrytped files are supported.
Rasperry Pi nano-computer supported (since version 4.1)
multiOTP provides all necessary files in order to create your own strong authentication device using a Raspberry Pi.
Self-registration and automaic resynchronisation (since version 4.1)
multiOTP offers the user the possibility to self-register his hardware token. It is also possible to resynchronize a token during the authentication.
Fully integrated client/server functionalities (since version 4.0)
multiOTP can even be installed on laptops, for example if you need strong authentication on your laptops and you are not sure that you will have Internet access during the strong authentication process. This is possible and is now working with a native client/server support and the ability to have also automatic caching of tokens information of any users that have logged at lieast once on the laptop.
SMS tokens and emergency scratch passwords (since version 4.0)
multiOTP supports hardware and software tokens with different One-Time Password algorithms like OATH/HOTP, OATH/TOTP, mOTP (Mobile-OTP), SMS tokens or also emergency scratch passwords with 10 codes.
MySQL support for the backend storage (since version 4.0)
The data storage of the command line utility is flat files based in order to simplify deployment in a few minutes, but MySQL is now also fully supported. multiOTP can be easily integrated in free RADIUS servers like FreeRADIUS under Linux and Windows or TekRADIUS LT under Windows.
QRcode generation for ultra-simple provisioning (since version 4.0)
multiOTP is fully compatible with Google Authenticator which supports TOTP and HOTP, and this by simply using QRcode provisioning.
And a lot of new features to discover...
- Create the account in multiOTP: multiotp -fascreate user_test
- Create the corresponding QRcode: multiotp -qrcode user_test
- Flashing the QRcode in the smartphone
- Enjoy the power of multiOTP: multiotp -status -debug user_test xxxxxx (xxxxxx is the current code displayed by the Google Authenticator)
Don’t hesitate to contact us by sending an email to info[AT]multiOTP[DOT]net if you have suggestions, or comments.
If you want to use multiOTP to log on your desktop, server or laptop with a strong authentication, have a look at MultiOneTimePassword Credential Provider, a great free product that works starting with Windows Vista.