Policy

9 posts

Most flexible two factor authentication – handling your events!

privacyIDEA comes with a great feature: The event handling framework. So learn more about the unlimited power of the event handling framework and how to use its flexibility to get a privacyIDEA setup, which fits your needs. Event Handling Framework When speaking of software or products the term “framework” might raise […]

privacyIDEA 2.12 released. Event Handler, Certificates, PKCS12 / PKCS11 and much more…

Today we released privacyIDEA 2.12. Certificates and Hardware Security Modules The certificate handling in privacyIDEA was improved. Administrators can now enroll a certificate token for a user and also generate the RSA key pair. Users can download the certificate and the private key as a PKCS12/PFX container. This is useful […]

Bug in passOnNoUser policy allows arbitrary authentication

A bug in the passOnNoUser policy allows authentication with an arbitrary password. Affected version: up to privacyIDEA 2.11.2 Propability: Medium Security Severity: High Technical Background The passOnNoUser policy is supposed to check if an authenticating user exists. If the user exists, normal authentication is performed. If the user does not exist in the user […]

privacyIDEA 2.10 released. All for the user – self registration, password reset, token wizard

Today we have pleasure in announcing the release of privacyIDEA 2.10. In this release the two factor authentication solution privacyIDEA eases the lives of the users. Self Registration and Password Reset privacyIDEA comes with a new policy scope “register”. If this policy is set new users may create a new […]