Blog in evidenza
Embedded YouTube VideoBy loading the video, you agree to Youtube's privacy policy and Nextcloud's privacy policy. Link to the video: https://youtu.be/CeE-2V7sB40
By playing this video, all Youtube videos will be unblocked
privacyIDEA adds a new security layer to Nextcloud
Security has always been Nextcloud’s first priority, and we are always happy when people contribute in this area. Today, we are happy to present you privacyIDEA, a modular authentication system adding a security layer to your existing systems.
Quick reminder about two-factor authentication
Before we explain what privacyIDEA is, let’s remind what 2-Factors-Authentication (2FA) is. When you log into a system, you usually use a password. This is necessary, but this is not super secure. Your password could be stolen, someone could reset it, it could be stored in an insecure place… 2FA tackles this issue by stating that in order to access a system, you must give two different pieces of information. First, something you know (your password). Second, something you have, whether it is a one-time code sent to one of your devices, a USB key (like Yubikey) or a token if you have lost your device. It could also be ‘something you are’ (like a fingerprint or retina scan). Key is: two different ‘factors’ are required to log in. Thus, if your password has been compromised, the attacker will not be able to access your account without this second factor of authentication. 2FA is a nice security layer to add to your authentication and plenty of companies use it to ensure the safety of their data.
Managing 2FA in companies
2FA is not easy to manage in a company environment, though. For instance, Nextcloud implements a native 2FA feature, but companies might also need to define 2FA rules for certain employees or certain apps and they may want to use it for different layers (VPN, firewall) or applications (WordPress, CRM etcetera). It would be easier to have one 2FA system for all systems, rather than a separate second factor for each. And instead of letting employees defining rules of their own (or not using 2FA at all), companies want to centrally manage two factors and their restrictions and rules. This is where privacyIDEA comes in.
Meet privacyIDEA
PrivacyIDEA is an open source solution enabling central management of 2FA. It can identify users from multiple sources (LDAP, Active Directory and many more protocols) and manage their second factor of authentication. Administrators define rules and circumstances under which a user needs to log in with a second factor in a central way. Of course, everything runs inside the company, limiting the risk of data exposure and security breach.
The good news is that privacyIDEA works perfectly fine with Nextcloud! If you run a Nextcloud for your family or friends, the native 2FA should be sufficient. But it you run a bigger group with a need for permissions and central management, you should definitely give it a try. Learn more about privacyIDEA in Nextcloud in this video!
Altri post
Comunicazione e collaborazione resilienti con il nuovo Nextcloud Talk
Ti presentiamo Nextcloud Talk “Munich”, la piattaforma di comunicazione open source e digitalmente sovrana per i team ibridi, che rappresenta una solida alternativa ai cloud delle Big Tech. Ora ancora più resiliente, potente e facile da utilizzare fin da subito. Per saperne di più.
Per saperne di più
Nextcloud Hub 10 - il tuo spazio di lavoro digitale unificato e modulare
Dai il benvenuto Nextcloud Hub 10. La nostra ultima versione è caratterizzata da prestazioni migliorate in ogni app, una maggiore integrazione in tutta la piattaforma e decine di nuove funzionalità che ti faciliteranno la giornata.
Per saperne di più
Nextcloud Talk: la nostra risposta open source a Microsoft Teams
Le organizzazioni, grandi e piccole, necessitano di una soluzione che garantisca la resilienza e la sovranità digitale delle loro operazioni: un'alternativa open source e rispettosa della privacy a Teams. E oggi presentiamo questa soluzione: Nextcloud Talk.
Per saperne di più
A sovereign Microsoft 365 alternative: Nextcloud and IONOS join forces
Discover the Microsoft 365 alternative by Nextcloud and IONOS: the Nextcloud Workspace office suite, launching in the course of 2025.
Per saperne di più
June maintenance updates are here: Nextcloud Hub 9 and 10
Maintenance updates are ready for Nextcloud Hub 9 and 10. Find out more about the updates in this post. Always keep your server up to date!
Per saperne di più
Nextcloud as first cloud software to get the Blauer Engel ecolabel for green IT
Nextcloud becomes the first cloud software platform to earn the Blauer Engel ecolabel, proving that digitally sovereign and green IT is possible.
Per saperne di più