Ocserv OTP or Google Autentication 2FA

Hello guys,

I do not know if there is another place but suitable for this question but I looked in the openwrt documentation and in the ocserv documentation and I was not able to successfully implement any second authentication factor in ocserv

I have an openwrt OpenWrt version 19.07.6 r11278-8055e38794 on a TP-Link Archer C7 v2 (ar71xx) with ocserv modules and all dependencies besides acme, libpam google authenticator and oauth-tool

I configured the system using the PAM and PLAIN authentication guidelines in this tutorial https://ocserv.gitlab.io/www/recipes-ocserv-2fa.html but without success

when starting ocserv after configuration I get the error

"Sun Jan 24 19:15:00 2021 daemon.info procd: Instance ocserv :: instance1 s in a crash loop 6 crashes, 0 seconds since last crash"

someone managed to carry out a successful 2fa deployment on ocserv get me an orientation where I'm wrong.


I've noticed one interesting requirement in ocserv docs:
It requires ocserv to be compiled with liboath.
and can't find any trace of this lib in the Makefile