ninja-forms domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /var/www/html/wp-includes/functions.php on line 6114simple-custom-post-order domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /var/www/html/wp-includes/functions.php on line 6114wp-mail-logging domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /var/www/html/wp-includes/functions.php on line 6114health-check domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /var/www/html/wp-includes/functions.php on line 6114updraftplus domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /var/www/html/wp-includes/functions.php on line 6114rocket domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /var/www/html/wp-includes/functions.php on line 6114Security has always been Nextcloud’s first priority, and we are always happy when people contribute in this area. Today, we are happy to present you privacyIDEA, a modular authentication system adding a security layer to your existing systems.
Before we explain what privacyIDEA is, let’s remind what 2-Factors-Authentication (2FA) is. When you log into a system, you usually use a password. This is necessary, but this is not super secure. Your password could be stolen, someone could reset it, it could be stored in an insecure place… 2FA tackles this issue by stating that in order to access a system, you must give two different pieces of information. First, something you know (your password). Second, something you have, whether it is a one-time code sent to one of your devices, a USB key (like Yubikey) or a token if you have lost your device. It could also be ‘something you are’ (like a fingerprint or retina scan). Key is: two different ‘factors’ are required to log in. Thus, if your password has been compromised, the attacker will not be able to access your account without this second factor of authentication. 2FA is a nice security layer to add to your authentication and plenty of companies use it to ensure the safety of their data.
2FA is not easy to manage in a company environment, though. For instance, Nextcloud implements a native 2FA feature, but companies might also need to define 2FA rules for certain employees or certain apps and they may want to use it for different layers (VPN, firewall) or applications (WordPress, CRM etcetera). It would be easier to have one 2FA system for all systems, rather than a separate second factor for each. And instead of letting employees defining rules of their own (or not using 2FA at all), companies want to centrally manage two factors and their restrictions and rules. This is where privacyIDEA comes in.
PrivacyIDEA is an open source solution enabling central management of 2FA. It can identify users from multiple sources (LDAP, Active Directory and many more protocols) and manage their second factor of authentication. Administrators define rules and circumstances under which a user needs to log in with a second factor in a central way. Of course, everything runs inside the company, limiting the risk of data exposure and security breach.
The good news is that privacyIDEA works perfectly fine with Nextcloud! If you run a Nextcloud for your family or friends, the native 2FA should be sufficient. But it you run a bigger group with a need for permissions and central management, you should definitely give it a try. Learn more about privacyIDEA in Nextcloud in this video!
“When we have welcoming communities of contributors, open source software gets better and more useful to everyone.” Limor Fried, Electrical Engineer, Inventor and Founder of open-source hardware company Adafruit We believe in this ideal and love to work with our community. We are always looking to involve more people in Nextcloud, bringing in their ideas, […]
Ver más
When cables are cut, sanctions are put in place or privacy legislation prohibits the use of the service your entire organization depends on, what can you do? Amidst geo-political changes, organizations face dependencies on large, centralized communication platforms. A major example of this is the SaaS-only communication platform Microsoft Teams. It is the only solution […]
Ver más
The Nextcloud Conference is not your average event - it's a community meetup that brings together Nextcloud enthusiasts, contributors, developers, users and industry experts from all over the world.
Ver más
Para ayudar a las organizaciones gubernamentales y empresariales a migrar de Microsoft 365, el equipo de Nextcloud Office está buscando participantes para estudios de UX. En particular, se anima a los grandes usuarios de Microsoft Office a que participen y den su opinión para que el equipo pueda identificar y abordar los principales obstáculos para […]
Ver más
