search

multiOTP / multiotp

multiOTP open source strong two factor authentication PHP library, OATH certified, with TOTP, HOTP, Mobile-OTP, YubiKey, SMS, QRcode provisioning, etc.
http://www.multiOTP.net/
GNU Lesser General Public License v3.0
358 stars 76 forks source link

User desactivated, while sync works #159

Closed JeroenTuinstra closed 1 year ago

JeroenTuinstra commented 1 year ago

We are locked out of our servers because multiotp claims the (single) user is desactivated: 

Test result:    failed (38 ERROR: User is desactivated)

We did a manual ldap sync with this as result: 

========================================
multiotp 5.9.4.0
Your script is running from C:\MultiOTP\windows\.\
2023-03-07 20:34:49 debug       LDAP    Debug: *AD/LDAP synchronization started at 20:34:49 / Memory used: 13.3MB / Peak: 23.4MB    0   MFA
2023-03-07 20:34:49 info        LDAP    Info: AD/LDAP synchronization started   0   MFA
2023-03-07 20:34:49 debug       System  Debug: *LDAP cache folder created (C:\Users\ADMINI~1.ADV\AppData\Local\Temp\.ldap_cache/)   0   MFA
2023-03-07 20:34:49 debug       System  Debug: *LDAP cache folder value: C:\Users\ADMINI~1.ADV\AppData\Local\Temp\.ldap_cache/  0   MFA
2023-03-07 20:34:49 info        LDAP    Info: No update for the 1 LDAP synced users, based on 1 LDAP entries (processed in 00:00:00)    0   MFA
2023-03-07 20:34:49 debug       Debug   Debug: *19 INFO: Requested operation successfully done  0   MFA

Still the user is seen as desactivated, which is absolutely not the case. (its the administrator account). Please assist.

multiOTP commented 1 year ago

Hello, First step, do this : multiotp -set your_user desactivated=0 Next, try this command : multiotp -ldap-users-list Is the account in the list ?

JeroenTuinstra commented 1 year ago

We have setup multi-otp from scratch again and it worked again. We'll remember this for the next time.