More Security in OpenOTP Token
Attackers have developed new ways to abuse push-based authentication. Techniques such as push bombing (flooding the user with login requests), fatigue attacks (hoping the user approves one request out of annoyance), and accidental approvals (a mistaken tap on the screen) are becoming common. These attacks …
Raising the Bar for PAM: User Access Approvals
OpenOTP / WebADM now lets you require approvals before users get into sensitive systems. You can define approvers per application policy, choose how many approvals are needed, set approval time windows, make approvals one‑time or bound to a user’s IP, and exempt (allowlist) specific users. Approvals can …
