2 Questions

  1. Is it possible to make certain LDAP users admins in PI?
  2. Is it possible to have the token list show only TOTP or default to TOTP?

Thanks

Hi Tom,

  1. Yes, you can define realms, that will act as administrators.
    Thus you can define a useridresolver, that filters on certain users and
    add this useridresolver to a realm.
    Then you can add this realm to the list of SUPERUSER_REALM in the pi.cfg
    file.
    https://privacyidea.readthedocs.org/en/latest/installation/system/inifile.html

  2. You mean in Enrollment? At the moment this is hardcoded and not
    possible. But as a matter of fact, there is an issue reflecting this:
    https://github.com/privacyidea/privacyidea/issues/152
    And it will probably™ be part of the next release 2.4.

Kind regards
CorneliusAm Donnerstag, den 04.06.2015, 07:35 -0700 schrieb Tom Cole:

  1. Is it possible to make certain LDAP users admins in PI?
  2. Is it possible to have the token list show only TOTP or default to
    TOTP?

Thanks


You received this message because you are subscribed to the Google
Groups “privacyidea” group.
To unsubscribe from this group and stop receiving emails from it, send
an email to privacyidea+unsubscribe@googlegroups.com.
To post to this group, send email to privacyidea@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/privacyidea/84139f52-ac66-4c9f-a8c2-a1880b5dc81a%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.


Cornelius Kölbel
@cornelinux
+49 151 2960 1417

NetKnights GmbH
http://www.netknights.it
Landgraf-Karl-Str. 19, 34131 Kassel, Germany
Tel: +49 561 3166797, Fax: +49 561 3166798

Amtsgericht Kassel, HRB 16405
Geschäftsführer: Cornelius Kölbel

signature.asc (819 Bytes)

Thanks - that answered my question.On Thursday, June 4, 2015 at 10:35:42 AM UTC-4, Tom Cole wrote:

  1. Is it possible to make certain LDAP users admins in PI?
  2. Is it possible to have the token list show only TOTP or default to TOTP?

Thanks

Ok - I look forward to implementing it in 2.4.

Thanks

Tom> Cornelius Kölbel mailto:cornelius.koelbel@netknights.it

June 5, 2015 at 05:13
Hi Tom,

just pushed the changes so that the UI will reflect the policies.
So you can set an admin- or user-policy to define to only enroll TOTP.

https://github.com/privacyidea/privacyidea/commit/00c107b25b2619e3f231d0b20adbe6ea8b295bfd

This will be available in the next release 2.4.

Kind regards
Cornelius

Tom Cole mailto:Tom_Cole
June 4, 2015 at 12:46
Thanks - that answered my question.

On Thursday, June 4, 2015 at 10:35:42 AM UTC-4, Tom Cole wrote:

You received this message because you are subscribed to a topic in the
Google Groups “privacyidea” group.
To unsubscribe from this topic, visit
https://groups.google.com/d/topic/privacyidea/7cX4pgNEduc/unsubscribe.
To unsubscribe from this group and all its topics, send an email to
privacyidea+unsubscribe@googlegroups.com
mailto:privacyidea+unsubscribe@googlegroups.com.
To post to this group, send email to privacyidea@googlegroups.com
mailto:privacyidea@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/privacyidea/ce43703c-0f11-4093-8be6-a5a97c41e2d4%40googlegroups.com
https://groups.google.com/d/msgid/privacyidea/ce43703c-0f11-4093-8be6-a5a97c41e2d4%40googlegroups.com?utm_medium=email&utm_source=footer.
For more options, visit https://groups.google.com/d/optout.

Hi Tom,

just pushed the changes so that the UI will reflect the policies.
So you can set an admin- or user-policy to define to only enroll TOTP.

This will be available in the next release 2.4.

Kind regards
CorneliusAm Donnerstag, den 04.06.2015, 09:46 -0700 schrieb Tom Cole:

Thanks - that answered my question.

On Thursday, June 4, 2015 at 10:35:42 AM UTC-4, Tom Cole wrote:
1) Is it possible to make certain LDAP users admins in PI?
2) Is it possible to have the token list show only TOTP or
default to TOTP?

    Thanks


You received this message because you are subscribed to the Google
Groups “privacyidea” group.
To unsubscribe from this group and stop receiving emails from it, send
an email to privacyidea+unsubscribe@googlegroups.com.
To post to this group, send email to privacyidea@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/privacyidea/ce43703c-0f11-4093-8be6-a5a97c41e2d4%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.


Cornelius Kölbel
@cornelinux
+49 151 2960 1417

NetKnights GmbH
http://www.netknights.it
Landgraf-Karl-Str. 19, 34131 Kassel, Germany
Tel: +49 561 3166797, Fax: +49 561 3166798

Amtsgericht Kassel, HRB 16405
Geschäftsführer: Cornelius Kölbel

signature.asc (819 Bytes)