OpenOTP LDAP Bridge

OpenOTP LDAP Bridge

Secure third-party LDAP products and systems with MFA

OpenOTP LDAP Bridge (LDProxy) provides user authentication with OTP over the standard LDAP protocol.
Adding MFA to legacy applications is possible with OpenOTP Security Suite.

OpenOTP LDAP Bridge is an optional component which provides OTP over LDAP. As a LDAP proxy server, it is connected to your base LDAP backend (ex. ActiveDirectory, Novell, 389…) and it transparently provides OTP login mechanisms for the existing LDAP users.
Because it is a transparent proxy, it make it possible to implement multi-factor authentication as well as complex WebADM access policies for legacy applications which do not support other authentication mechanisms than LDAP.

Secure third-party LDAP products and systems with MFA! With our LDAP Bridge you can integrate a large variety of third-party products and systems with multi-factor authentication, even if these products only support LDAP as an authentication backend.
To achieve this, LDProxy acts as an LDAP proxy for your applications and intercepts user binds (LDAP authentication) operations.

SEEING
IS BELIEVING

Whether you are buying a car or a security solution, you always want to test drive it before signing on the dotted line. We know this and you know this.

Contact us for your Free PoC or check it out for yourself.

How it works?

OpenOTP LDAP Bridge

Implement IAM-MFA for all VPN-SSL VPN Access

The main use-case of LDProxy is accommodating Enterprise applications that only support LDAP as an external authentication mechanism.
LDProxy includes configurations to distinguish which authentication requests are delegated to the OpenOTP server and which are forwarded to the LDAP back-end.
It is able to proxy standard LDAP requests in order to keep your applications use the LDAP back-end, as usual.
LDProxy is also deployed between the applications and the LDAP back-end.

LDAP Bridge supports single-factor authentication with password-only or OTP-only as well.
The OpenOTP authentication policies are very flexible and can be configured on a per-client basis in WebADM.
Moreover, the client policies can be contextual to the network of the users accessing your systems.
This flexibility also provides support for integrations where the first factor is handled by your AD servers and the second factor (the OTP) is handled by your OpenOTP server.

LDAP Bridge provides the LDAP interface on top of the OpenOTP server. And it is included in your OpenOTP license at no extra charge.
The LDAP standard is supported by all major Enterprise products on the market from HP, IBM, Oracle, BMC…

LDAP integrations support most OpenOTP features
100% compatible with LDAP client applications
Robust implementation built with OpenLDAP
Distinguishes system accounts and user accounts (OTP)
LDAP+OTP is supported with password concatenation
Transparently proxies LDAP requests to the LDAP back-end
Authentication policies per client application or group of users
Bridges all the OpenOTP functionalities (Tokens, Yubikey, SMSOTP, MailOTP…)
Standalone service with no additional OpenOTP configuration required
High performance with hundreds of requests per second
Cluster support with multiple bridges for HA

See how simple it is to use OpenOTP LDAP Bridge:

Choose the method that best suits you

Authentication Methods

RCDevs’ IAM-MFA Cybersecurity Solutions Compatible with Strong Authentication Login Technologies

SEEING
IS BELIEVING

Whether you are buying a car or a security solution, you always want to test drive it before signing on the dotted line. We know this and you know this.

Contact us for your Free PoC or check it out for yourself.

EN