With the brand new model 3.6, the IT safety firm NetKnights has up to date its free software program for multi-factor authentication privacyIDEA. With extra attributes used inside privacyIDEA insurance policies, person authorizations might be outlined much more exactly. Since privacyIDEA reads person knowledge from SQL databases, LDAP directories or Energetic Listing, admins beforehand needed to handle their attributes there as effectively. With the brand new model, this could now be carried out straight inside privacyIDEA.
This opens up new potentialities for attribute-dependent authorizations. Admins can now outline tips and thus set the entry rights in additional element. For instance, should you enable customers to handle their very own attributes, they’ll replace the cell quantity, for instance, with out contacting the assistance desk or admins. As well as, admins preserve higher management in bigger set-ups, as they’ll higher group customers and tokens utilizing the modified attribute guidelines.
One other innovation is the token rollover operate, which permits customers to alternate their tokens themselves through a self-service portal. This occurs when a person is simply allowed to have one token however needs to maneuver it to a brand new smartphone, or the corporate decides to extend the important thing measurement of the tokens.
The straightforward push token for authentication has been round since Version 3.0, however it’s time-consuming to configure it utilizing the Firebase push service. With the push token, customers authenticate themselves when registering for a service through the privacyIDEA authenticator app, obtain a notification on their smartphone and make sure it with one click on. Now admins can configure the push token in order that it solely works in a single polling methodology. An exterior third celebration service is required and the person’s smartphone solely communicates with the privacyIDEA server.
privacyIDEA 3.6 is on the market from the Python Package deal Index and Ubuntu repositories. Additional data on the discharge might be discovered within the changelog or on the web site of NetKnights.