woltere / open-one-time-password--credential-provider

Automatically exported from code.google.com/p/open-one-time-password--credential-provider
0 stars 0 forks source link

Source IP local machine not the RDP host #2

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago
What steps will reproduce the problem?
1. my IP host = 10.10.118.21
2. The Ip server on witch credential provider is install : 172.16.9.42
3. The IP of OTP server : 172.9.5.110

When I'm connecting to the 172.16.9.42 with my AD login, the CP use as source 
IP its IP (172.16.9.42) to communicate with the OTPserver (172.9.5.110).

For example (log of SOAP Request in OpenOTP):
[2014-04-24 12:53:00] [172.16.9.42] [OpenOTP_8491C30A] New openotpLogin SOAP 
request
[2014-04-24 12:53:00] [172.16.9.42] [OpenOTP_8491C30A] > Username: john
[2014-04-24 12:53:00] [172.16.9.42] [OpenOTP_8491C30A] > Domain: pocvirt
[2014-04-24 12:53:00] [172.16.9.42] [OpenOTP_8491C30A] > LDAP Password: 
xxxxxxxxxx
[2014-04-24 12:53:00] [172.16.9.42] [OpenOTP_8491C30A] > Client ID: 
credential_provider
[2014-04-24 12:53:00] [172.16.9.42] [OpenOTP_8491C30A] > Source IP: 172.16.9.42
[2014-04-24 12:53:00] [172.16.9.42] [OpenOTP_8491C30A] Enforcing client policy: 
credential_provider
[2014-04-24 12:53:00] [172.16.9.42] [OpenOTP_8491C30A] Registered openotpLogin 
request

We need to use the source IP of the host RDP (10.10.118.21) to send to 
OTPserver (172.9.5.110) because we have client policy with internal network 
option for the hosts of our internal network.

This option exist in the credential provider ?
If not, this is possible than you send me the source code of this software 
(OpenOTP credential provider) to add a personnal function witch manage this 
option ?

I will can share my code if you want, no problem !

Thank you very much for your support,

Regards,
Johan

Original issue reported on code.google.com by johan.j...@gmail.com on 24 Apr 2014 at 1:27

GoogleCodeExporter commented 9 years ago
Sorry for not having answered. Please consider to issue requests through RCDevs 
support.

The requested change is a bit tricky, because of the way RDP session's are 
handled.
Is the host's IP requestable using WTS_* ?

Original comment by dominik....@gmail.com on 1 Aug 2014 at 4:43