[Freeipa-users] otp issue: can't log in with password+otp
Nathaniel McCallum
npmccallum at redhat.com
Tue Sep 22 18:12:21 UTC 2015
Running IPA in a container is very bleading edge. I would not be
surprised at all if you run into lots of problems.
On Tue, 2015-09-22 at 12:10 -0600, Duncan McNaught wrote:
> Thanks Nathaniel,
> I am running with Jan's Centos-7 container and I'd like to have
> Multi-factor Authentication/2FA enabled.
> He mentioned that systemd is not running in the container, so I
> guess that explains why 2FA is failing. I wonder if I can get
> systemd running there.
> --Duncan
>
>
> Thanks
> --Duncan
> ____________________________
> Duncan McNaught
> Infrastructure Engineer
> Technologies | www.bitnet.io
> +1 720 240 6575
>
> On Tue, Sep 22, 2015 at 6:55 AM, Nathaniel McCallum <npmccallum at redha
> t.com> wrote:
> > On Mon, 2015-09-21 at 16:49 -0600, Duncan McNaught wrote:
> > > Dear freeipa-users,
> > >
> > > I'm having an issue with otp in freeipa. I can set up the
> > service as
> > > described in the blog post for TOTP or HOTP, and sync the token
> > fine.
> > > When I try to login to the admin tools or an ipa-managed client
> > > (with <password><token>) , I get a password incorrect message.
> > > Here are some more details: https://github.com/adelton/docker-fre
> > eipa
> > > /issues/34
> > > Can anyone help me to debug/get this working?
> >
> > I'm very unclear as to what you are trying to do. Are you trying to
> > run FreeIPA in a container? If so, Jan is probably your man. AFAIK,
> > ipa-otpd will require systemd in the container.
> >
> > If you are trying to run this on CentOS 7.1 (not a container), it
> > seems to me that your LDAP server isn't running or something is
> > wrong
> > with ldapi.
> >
> > Can you explain your setup in more detail?
> >
> > Nathaniel
> >
More information about the Freeipa-users
mailing list