Wrong OTP pin about privacyidea-credential-provider HOT 7 CLOSED

Hi,
i dont know what you have entered, how your CP or privacyidea is configured. So no, i dont know.

from privacyidea-credential-provider.

CP is configured by default
Privacyidea by default, i tested totp and hotp.

### [15-11-2023 16:37:14] [JsonParser.cpp:225] JsonParser::ParseResponseForOfflineData
[15-11-2023 16:37:14] [JsonParser.cpp:53] JsonParser::ParsePIResponse
[15-11-2023 16:37:14] [CCredential.cpp:957] Authentication complete: false
[15-11-2023 16:37:14] [CCredential.cpp:958] Connect - END
[15-11-2023 16:37:14] [CCredential.cpp:606] CCredential::GetSerialization
[15-11-2023 16:37:14] [Utilities.cpp:330] SetScenario: SECOND_STEP
[15-11-2023 16:37:14] [Utilities.cpp:494] Utilities::SetFieldStatePairBatch
[15-11-2023 16:37:14] [CCredential.cpp:744] CPGSR_NO_CREDENTIAL_NOT_FINISHED
[15-11-2023 16:37:14] [CCredential.cpp:750] CCredential::GetSerialization - END
[15-11-2023 16:37:17] [CCredential.cpp:780] CCredential::Connect: CREDENTIAL SUBMITTED - step 2
[15-11-2023 16:37:17] [Utilities.cpp:641] Utilities::CopyInputsToConfig
[15-11-2023 16:37:17] [Utilities.cpp:733] Loading password from GUI, value:
[15-11-2023 16:37:17] [Utilities.cpp:736] 987654
[15-11-2023 16:37:17] [Utilities.cpp:757] Loading OTP from GUI, from '' to '123456'
[15-11-2023 16:37:17] [CCredential.cpp:853] 2nd step: Sending OTP/Offline check
[15-11-2023 16:37:17] [PrivacyIDEA.cpp:152] PrivacyIDEA::OfflineCheck
[15-11-2023 16:37:17] [PrivacyIDEA.cpp:156] Offline verification result: 0x80004005
[15-11-2023 16:37:17] [PrivacyIDEA.cpp:97] PrivacyIDEA::ValidateCheck
[15-11-2023 16:37:17] [Endpoint.cpp:165] Endpoint::SendRequest to /validate/check
[15-11-2023 16:37:17] [Endpoint.cpp:72] Request parameters:
[15-11-2023 16:37:17] [Endpoint.cpp:80] pass=123456
[15-11-2023 16:37:17] [Endpoint.cpp:80] user=user1
[15-11-2023 16:37:17] [Endpoint.cpp:368] {
"detail": {
"message": "wrong otp pin",
"threadid": 140455234754112
},
"id": 2,
"jsonrpc": "2.0",
"result": {
"authentication": "REJECT",
"status": true,
"value": false
},
"signature": "rsa_sha256_pss:0fa7e0ce210deb528faa71b6bf252beb730911afae2acfb4e61734dc87455bfaf64e6355441a73ab6a6e2285448d035d5d505193e778b79ea2727640b8865b68f889d6d45a6ff5775512c2c02fcd327610c7ef7cbd65385ec67f6d40cdae954136004baedf5855808ca2893c7d2e1ab47f77c9c58d2d00d3ea1fdabc521b94469094085a67dc52f9acaecff62332e94e6c047aa924b98f46a2fb0fc41a1af46d47605d96cb4b1d650976f7bdcea0838b66d3b838d0335af0c11cbd672c14b5ee72e7ec8a5e7a3ecad6cccc7dd719d7f90ec32993f6261076916d045e61240f6c12888b1987bf61b21531a886cc98ff049011a00c1c68c0c06c05d55c420cfafc",
"time": 1700062637.5546217,
"version": "privacyIDEA 3.9.1",
"versionnumber": "3.9.1"
}

pass=123456
shouldn't it rather be: 987654123456 ?

from privacyidea-credential-provider.

Oh okay, i understand that i have to type my ldap password in password and pin+otp in otp ?
my password: azerty
my pin 987654
my otp: 123456
i have to enter the otp: 987654123456 ?

from privacyidea-credential-provider.

yes, you will have to enter your windows password. if everything is default, its pin+otp for the otp field.

from privacyidea-credential-provider.

okay thank you
Is it possible to juste have to enter otp for the otp field ?

from privacyidea-credential-provider.

you do not have to use a pin for the token, so remove the pin in privacyidea

from privacyidea-credential-provider.

wow thank you, I thought it was mandatory

from privacyidea-credential-provider.