Shed Light on the “IT jungle” with a Domain Controller

Image of a man with code in the background
The professional structure of domains and the use of domain controllers bring order to IT infrastructures. This is especially important when organizations are growing rapidly. Professional domain management allows their IT to grow dynamically. Otherwise, the infrastructure becomes a kind of “patchwork carpet” of many small solutions and unorganized resources, some of which act independently of each other, may interfere with each other and thus require a high level of maintenance. Not to mention the complexity of maintaining users twice as often and the risks associated with data replication, data protection, and system reliability.

In the following article, we first explain briefly what a domain is and then describe the tasks of a domain controller. Finally, we become practical and see how the concept of “domain/domain controllers” has been implemented in Univention Corporate Server.

Univention Corporate Server 4.2-2 released

One of the highlights of the second point release of Univention Corporate Server (UCS) are the significant enhancements UCS 4.2-2 offers for managing services and apps that are hosted in public cloud services such as the Amazon Marketplace. Services installed on UCS can now be accessed directly without any further configuration effort. Our development department has extended access to these services via the UCS Portal by converting the links to relative links. For portal entries for which there are several links, heuristic procedures determine the best link.

More Ransomware Protection with ownCloud: Combat WannaCry, Petya & Co.

Bild von Hacker

After the waves of attack by ransomware WannaCry in May and its successor Petya in June, agitation prevails in many IT departments. The economic damage is now already in the billions and CIOs are under great pressure to protect companies and their users from new attacks. But how can you protect your company against these attacks, which have the potential to destroy all files?

In the owncloud blog we announced a number of new features to better protect your data. As the free community edition of ownCloud is also available in the Univention App Center, I am glad to share this inform with you here today:

Good bye Graduate Prize! Hello Future Ideas!

A total of 9 times we have now awarded the Univention Prize. The objective of this competition was to support the employment of Open Source in a university context and make it known to a broad public. The response impressed us. In some years, there were almost 40 bachelor, master or diploma theses submitted for the competition.

And the broad press coverage in well-known media such as heise.de, the Linux Magazine, Pro-Linux or golem.de certainly contributed to deliver the message to a wide audience that Open Source has nothing to do with spaghetti code, idealism or even stubborn dogmatism. So you could say: The goal is reached!

RADIUS – a Powerful Tool for Safe Mobile Device Accesses

Picture of mobile with earphones

Workplaces become more remote and mobile while individuals are increasingly equipped with (private) mobile devices. In this context it is good to know about RADIUS, because private end devices require simple access to an organization’s network. At the same time you need to avoid that these devices open the doors for malware or leakage. RADIUS is such an instrument for the construction of secure, decentralized work structures and equally a powerful tool for the authentication of mobile device accesses to networks.

In the following, we like to give you a brief understanding of what RADIUS is and how you can use it with UCS.

OpenVPN to Secure your Samba Authentications Automatically

Login Illustration

Samba 4 has become the tool of choice for companies with diverse clients that seek a Linux-based central identity management. However, a growing number of organizations are offering work from home options and manage distributed operations like construction companies with a computer at every construction site or an insurance provider with several offices. The securing of all authentication processes when employees log in your network also from outside, is critical to protect your data.

But how to do that?

You need to add a VPN solution which starts before the login if you want to enjoy the advantages of single sign-on and policies that Samba provides. The following how-to will describe how to add OpenVPN to an existing Samba 4 installation to automatically secure client authentications over an untrusted network.

It’s FOSS: Using Univention Corporate Server (UCS) as a Home Server

The Linux blog It’s FOSS published an article about the possibilitiy to use Univention Corporate Server as a home server. This article provides a step by step process to set this up. It also informs on how to extend UCS by the groupware Kopano and the filesharing solution Nextcloud to have a complete , safe to use package as an alternative to the standard, proprietary solutions.