Today we released privacyIDEA 2.12. Certificates and Hardware Security Modules The certificate handling in privacyIDEA was improved. Administrators can now enroll a certificate token for a user and also generate the RSA key pair. Users can download the certificate and the private key as a PKCS12/PFX container. This is useful […]
Monthly Archives: May 2016
5 posts
Cornelius will give a talk about what’s new in privacyIDEA at the tübix in Tübingen. This will be things like: Event handler to trigger certain actions depending on events Improved certificate support Editable user resolvers – even in LDAP Improvements in the WebUI and policies Easy Migration with RADIUS passthru […]
As you might have realized we planned privacyIDEA Release 2.12 for these days. But due to several reasons it is delayed. We found a nasty bug this week, which required our attention. Support for Nitrokey We are talking a lot to Nitrokey, since it is a great idea to combine transparent, […]
A bug in the passOnNoUser policy allows authentication with an arbitrary password. Affected version: up to privacyIDEA 2.11.2 Propability: Medium Security Severity: High Technical Background The passOnNoUser policy is supposed to check if an authenticating user exists. If the user exists, normal authentication is performed. If the user does not exist in the user […]
Security Modules The security module is the module in privacyIDEA that is responsible for encrypting information. The default security module uses the file /etc/privacyidea/enckey, which is specified in pi.cfg. The enckey contains the encryption keys for encrypting the otp secret keys and also password, like for the LDAP connection. The […]