<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
Hello Ryan,<br>
<br>
No worries. I'm glad you're helping out (with the backport as well)
anyway.<br>
<br>
My goal is support for RFC 6238 and the manual page you're referring
to states this is supported.<br>
<br>
So yes: the built-in module should work fine and therefore the
contrib module is not needed in my use case.<br>
<br>
Thanks again!<br>
<br>
Cheers,<br>
Kees<br>
<br>
<div class="moz-cite-prefix">On 26-11-2022 03:06, Ryan Tandy wrote:<br>
</div>
<blockquote type="cite" cite="mid:Y4F0qgM6vgel1dKx@t570.nardis.ca">Hi
Kees,
<br>
<br>
On Tue, Nov 22, 2022 at 11:14:43AM +0100, Kees Meijs wrote:
<br>
<blockquote type="cite">Unfortunately I didn't have time earlier,
but I just managed to install a new virtual machine using
bookworm. After installing both the slapd and slapd-contrib
packages, I do not see the TOTP module.
<br>
<br>
So no, it seems not to be included.
<br>
</blockquote>
<br>
Sorry if I wasn't clear. I agree the contrib totp module is not
built.
<br>
<br>
The slapd-otp(5) module, however, is:
<br>
<br>
# dpkg-query -W slapd
<br>
slapd 2.5.13+dfsg-2+b1
<br>
# dpkg-query -L slapd | grep otp
<br>
/usr/lib/ldap/otp-2.5.so.0.1.8
<br>
/usr/lib/ldap/otp.la
<br>
/usr/share/man/man5/slapo-otp.5.gz
<br>
/usr/lib/ldap/otp-2.5.so.0
<br>
/usr/lib/ldap/otp.so
<br>
<br>
My understanding is that slapd-otp(5) supersedes and obsoletes the
contrib module, providing a superset of its features (the man page
mentions both TOTP and HMAC). That's why I asked if it meets your
needs, or if you specifically need the contrib totp module. I'm
not keen on shipping both unless there's a convincing reason.
<br>
<br>
thanks, and sorry for the back-and-forth,
<br>
Ryan
<br>
</blockquote>
<br>
</body>
</html>