privacyIDEA 3.1 has the most flexible policies to cope with every login situation. It allows easy migration from any proprietary 2FA system.
Policy
10 posts
privacyIDEA comes with a central tool “pi-manage”. pi-manage runs on the local privacyIDEA machine. The interesting thing is, that it operates directly on the database level. So you can use pi-manage, even if your webserver is not running. One important thing is, that you can use pi-manage to manage policies! […]
privacyIDEA comes with a great feature: The event handling framework. So learn more about the unlimited power of the event handling framework and how to use its flexibility to get a privacyIDEA setup, which fits your needs. Event Handling Framework When speaking of software or products the term “framework” might raise […]
Today I want to give you an idea about the current development in privacyIDEA. You may like privacyIDEA because it is probably the most flexible and extensible multi factor authentication system due to its sophisticated policies and event handler framework. But I just pushed a small enhancement in regards to […]
Yes I know. And I also always said, please do not use SMS for two factor authentication. Rely on a decent piece of hardware. Although you should stop using text for two factor authentication, privacyIDEA supports text messages or SMS besides a long list of other token types. Text message […]
Today we released privacyIDEA 2.12. Certificates and Hardware Security Modules The certificate handling in privacyIDEA was improved. Administrators can now enroll a certificate token for a user and also generate the RSA key pair. Users can download the certificate and the private key as a PKCS12/PFX container. This is useful […]
Cornelius will give a talk about what’s new in privacyIDEA at the tübix in Tübingen. This will be things like: Event handler to trigger certain actions depending on events Improved certificate support Editable user resolvers – even in LDAP Improvements in the WebUI and policies Easy Migration with RADIUS passthru […]
A bug in the passOnNoUser policy allows authentication with an arbitrary password. Affected version: up to privacyIDEA 2.11.2 Propability: Medium Security Severity: High Technical Background The passOnNoUser policy is supposed to check if an authenticating user exists. If the user exists, normal authentication is performed. If the user does not exist in the user […]
Today we have pleasure in announcing the release of privacyIDEA 2.10. In this release the two factor authentication solution privacyIDEA eases the lives of the users. Self Registration and Password Reset privacyIDEA comes with a new policy scope “register”. If this policy is set new users may create a new […]
privacyIDEA provides the possibility to verify credentials that arrive via a REST API. You can attach arbitrary applications to privacyIDEA. But this could also result in arbitrary data being sent. This is why we just pushed a new feature for the next release 2.5 of privacyIDEA. Authentication Data Mangling Just […]