On July 15th we released LinOTP 3.2.1 to the repositories.

LinOTP 3.2.1

netgo software GmbH is pleased to announce the availability of the following product release:

LinOTP 3.2.1 brings fixes. The following list contains the most important changes. Please also refer to the complete changelog at the end of this newsletter.


  • Fix audit key verification errors
  • Fix migration of QR-tokens from SVA-2.12.5 to SVA-3.0
  • Ensure that inactive policies are not evaluated


LinOTP 3.2.1 is available as a Debian package from

Users of the LinOTP Smart Virtual Appliance will receive LinOTP 3.2.1 via the integrated auto-update mechanism.

We are happy to assist our support customers in upgrading their environment to the latest release. Please contact us at

The LinOTP team

netgo software GmbH
Strong MFA solution by netgo
Branch office Darmstadt, Pallaswiesenstr. 174a, 64293 Darmstadt
Main office, Siemensdamm 62, 13627 Berlin
Registerd Office: Amtsgericht Berlin-Charlottenburg, HRB 243718 B
Board of Directors: Matthias Nietz, Clemens Schmidt, Constantin Wehmschulte

Sales Hotline: +49 6151 86086-277, Fax: -299

Changelog LinOTP 3.2.1

  • Audit key verification errors solved by using newer version of pycryptodomex.
  • Remove weak file permissions in config dir.
  • Solved migration of QR-tokens which broke backup-restore from SVA-2.12.5 to SVA-3.0
  • Database re-encoding during database migration now also migrates managed users that were previously not correctly migrated.
  • Debian postinst trying to add admin users via htdigest. This is no longer supported and therefore removed. Use the linotp CLI manually instead.
  • Ensure that inactive policies are not evaluated. Previously, inactive policies were being evaluated in certain situations, leading to wrongly attributed permissions to logged-in administrators.