Hi Yoann,
If your other servers are linux machines, you can got with the normal
privacyIDEA pam.
I think using UCS as your directory it is really nice idea.
You might have heard that in version 4.1 of UCS they will add SSO via
simpleSAMLphp.
This is designed to be combined with privacyIDEA.
With the privacyIDA PAM App you will be able to add two factor
authentication to the normal UMC login.
(A blog article on this will follow)
With the privacyIDEA SAML App you can authenticate every SAML Service
Provider against UCS and thus add two factors to those services.
Kind regards
CorneliusAm Donnerstag, den 05.11.2015, 00:13 -0800 schrieb Yoann JOUVENT:
Hi Cornelius,
Our servers are other linux machines.
Thanks for all those informations !!! We will see what we can put in
place !!
Thanks.
Best regards
JOUVENT Yoann
Le mercredi 4 novembre 2015 16:52:38 UTC+1, Cornelinux K a écrit :
Hi Yoann,
thanks a lot for the feedback. Sounds great.
The SSH servers - are these machines also UCS or other linux
machines.
On UCS you might want to use the App "privacyIDEA PAM".
You might also think of using OTP as second factor for SSH but
also
manage your SSH keys with privacyIDEA.
You can upload the public SSH keys and assign those keys to
machines.
This way you can manage the keys centrally for all machines.
I have a new blog article here about combining all three:
* password
* OTP token
* ssh key
https://www.privacyidea.org/ssh-keys-and-otp-really-strong-two-factor-authentication/
Kind regards
Cornelius
Am Mittwoch, den 04.11.2015, 07:47 -0800 schrieb Yoann
JOUVENT:
> Hello Cornelius,
>
> Thanks for your fast answer !!!
>
> We use UCS for authentication ldap and we use also
authentication
> 802.1x with radius server integrated in UCS.
> We use privacyIDEA integrated on UCS to add authentication
ldap with
> OTP in addition of authentication 802.1x.
> We are at beginning of our integration of privacyIDEA but
the first
> tests are conclusive and integration on UCS is very easy.
> We use also privacyIDEA for connection ssh and connection of
our
> applications.
>
> Thanks.
>
> JOUVENT Yoann
>
> --
> You received this message because you are subscribed to the
Google
> Groups "privacyidea" group.
> To unsubscribe from this group and stop receiving emails
from it, send
> an email to privacyidea...@googlegroups.com.
> To post to this group, send email to
priva...@googlegroups.com.
> To view this discussion on the web visit
>
https://groups.google.com/d/msgid/privacyidea/92eb01b5-9aa7-495d-8b48-713faae2d78d%40googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
--
Cornelius Kölbel
corneliu...@netknights.it
+49 151 2960 1417
NetKnights GmbH
http://www.netknights.it
Landgraf-Karl-Str. 19, 34131 Kassel, Germany
Tel: +49 561 3166797, Fax: +49 561 3166798
Amtsgericht Kassel, HRB 16405
Geschäftsführer: Cornelius Kölbel
–
You received this message because you are subscribed to the Google
Groups “privacyidea” group.
To unsubscribe from this group and stop receiving emails from it, send
an email to privacyidea+unsubscribe@googlegroups.com.
To post to this group, send email to privacyidea@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/privacyidea/85365ba5-2ee7-4ecb-aef0-120ce8785a25%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
–
Cornelius Kölbel
@cornelinux
+49 151 2960 1417
NetKnights GmbH
http://www.netknights.it
Landgraf-Karl-Str. 19, 34131 Kassel, Germany
Tel: +49 561 3166797, Fax: +49 561 3166798
Amtsgericht Kassel, HRB 16405
Geschäftsführer: Cornelius Kölbel
signature.asc (836 Bytes)