multiOTP / multiOTPCredentialProvider

multiOTP Credential Provider is a V2 Credential Provider for Windows 7/8/8.1/10/2012(R2)/2016 with options like RDP only and UPN name support

Apache License 2.0

232 stars 77 forks source link

Bypass OTP for a specific client ip range #40

Closed csc-solution closed 3 years ago

csc-solution commented 3 years ago

Its not a bug but i don't know where can i place this question.

In source i found a function (GetSystemMetrics) in this was determinate the client ip. Is there a way to bypass OTP authentication for a ip range?

This would be very helpful in case of internal and external users.

Thanks in advance, Thomas

multiOTP commented 3 years ago

Hello, this is not possible. The only IP going through the RDP protocol is the local IP of the computer remotely connecting. It would be too risky to allow a range of private ip.

Best regards

Yann Jeanrenaud // multiOTP ® // +41 32 730 11 10 // [1] www.multiotp.com