IMO, OTP is inherently incompatible with replicas because a client can authenticate to each replica with what is intended to be a one time password. The only way to preclude this is, as was basically suggested, is to chain it to the master such that each password can only be used one time.
-- Kurt