Hello everyone.

We're testing a scheme where a Windows user would only enter username and then authenticate with a mail OTP from radius server. This is the first time we're going through something like this and I'm a bit confused. So let me try to describe what we did so far and maybe you can direct me to the right direction.

First I set up Multiple Login Options:

And then I configure Authentication factor for RADIUS. Here I clear the checkbox "Ask user for password" so that the user would only provide his username and then is only asked for the OTP he receives via email:

Now, in Endpoint Security on the user PC, user enters his username and clicks connect:

The password prompt is greyed out (as in the image above) or completely nonexistent (below):

At this point gateway sends the Access-Request only when anything is entered. We tried entering the OTP code received by email and random characters. In all cases the connection gets reset.

I found this post, and tried sk167118 but when EnableBlankRadiusAuth is set to 1, we don't even see the "Response" prompt. When we set the RADIUS server's policy to use OTP from the mobile app, everything works fine, the problem seems to be with email. And there are no issues with the connectivity between the gateway and the RADIUS server.

Edit: I should've mentioned that EnableBlankRadiusAuth is still set to 1, but probably needs to be set back to 0. I'm not sure exactly what this does, though.

I'm sure there's some confusion at some point but we couldn't pinpoint where it is so far.

All help and ideas will be appreciated, as always 🙂

Cheers!