SonicWall NetExtender with Two-Factor Authentication
When opening a session using the Netextender add-on, netcli.exe closes before I can enter my one-time password. Is there a setting in the connection properties to keep netcli.exe open long enough to enter my OTP?
Thanks!
All Comments (7)
Hi,
I don't think it's possible for now. Could you verify your netcli.exe command line to check if we can support it?
Regards
David Hervieux
Is OTP functional for netextender?
I tried almost every option and didn't get it working.
It opens a cmd and waits for the code...
Ty
Marcell Manfrin
e035558e-174e-4088-a886-ebfc3fa10185.png
Is OTP functional for netextender?
I tried almost every option and didn't get it working.
It opens a cmd and waits for the code...
Ty
Marcell Manfrin
Hello,
I'd like to start by knowing how this setting is configured within your entry ?
Best regards,
72ca9a82-f261-4247-9225-672c963b7b3a.png
Configuration
OTP code generated is right but it isn't used when connecting.
45309d48-ecd6-4c87-b97f-ac243d9a5801.png
Hello,
I will try performing some internal tests to see if it is possible to autofill the OTP.
I will get back to you with my results.
Best regards,
I've created a python script that do this using otr generated from bitwarden:
import wexpect
import subprocess
# bw username and password provided here
bwr = subprocess.run(["bw", "login", username, password, "--raw"], capture_output=True, text=True)
session = bwr.stdout
bwr = subprocess.run("bw get totp \"VPN\" --session \"" + session + "\"", capture_output=True, text=True)
otp = bwr.stdout
bwr = subprocess.run("bw logout", capture_output=True, text=True)
child = wexpect.spawn("\"NECLI.exe\" <netcli parameters here>")
child.expect('Password:')
child.sendline(otp)
Hello,
Thank you for this, from what I could gather, the OTP can't be autofilled in RDM.
I will send this to our engineers and asked if I missed something.
Best regards,