How UCS synchronizes Linux/Windows IT Infrastructures with Samba AD

The central management of a heterogeneous network has always been UCS’ strength. This was our goal from the beginning to provide a platform that bridges the Linux/Windows worlds. But how does the synchronization between UCS and Microsoft Windows actually work? The problem is that Windows doesn’t speak the same language as UCS. They don’t support the standard-compliant LDAP protocol that allows the communication between the server and clients in UCS. Microsoft has chosen a different approach for its Active Directory.

Let me explain you today which exact technologies we introduced in Univention Corporate Server to provide a solution to this problem. Among other things, I give you details about the replication process via listener/notifier for OpenLDAP, DRS replication for the Active Directory and the Univention S4 Connector, which synchronizes between Microsoft Windows and Linux.

1 Password for All Services and Networks with Single Sign-on

Single Sign-on in UCS at management console

Single Sign-on (SSO) is a process where your users authenticate themselves only once against the system and that’s it. They can then use a whole range of different programs, services, and cloud offerings without having to sign on personally each time again. Your users will love it. No more hassle with inventing and remembering numerous different passwords.

But single sign-on is not only about user friendliness. Another important aspect is, of course, the security of your data. When you’ve got a complex IT infrastructure, which includes mobile apps and devices and cloud services, the security risk increases a lot.

This is why I would like to explain here how you can catch two birds with one stone: Making work easier for your employees with single sign-on technology while keeping your data safer from external attacks at the same time.

Release of UCS 4.3-1: Various Security Updates and Usability Improvements

We released UCS 4.3-1, the first point release for Univention Corporate Server (UCS) 4.3. In addition to a number of security updates, it also brings various new features.

The diagnostics module of the Univention Management Console (UMC), for example, now provides further functional tests. These help administrators to check the “health” of the server and the entire domain. In addition, UCS 4.3-1 has improved its usability, for example with regard to the configuration of e-mail addresses or DNS settings. Furthermore, the integration of very large LDAP scheme extensions and the start of the LDAP server on DC backup and DC slave systems now work much more stable.

Setup of a Collaborative Workspace for a Globally Operating Team with UCS as the Central IDM System

Screenshot of the website of SOLARKIOSK

In this success story, you can find out how we set up a collaborative workspace for SOLARKIOSK AG, a company offering green energy services, high-quality products, and sustainable solutions all over the world. This workspace allows all members of the team to work and communicate with each other from anywhere and at any time – efficiently, reliably, and securely.

Automated Maintenance of Linux Desktop Clients in the UCS Domain with opsi

Grafik über Nutzerdownload

The well-known open source client management system opsi can not only deal with Microsoft Windows clients but also with Linux. As Univention announced the discontinuation of Univention Corporate Client (UCC), I want to present you opsi as an alternative for the fully automated installation, maintenance and inventory of Linux desktop clients in your domain. In addition, opsi can also do the same for complete Linux and UCS systems.

In the following, I explain you briefly how this works.

Setup of an Efficient IT Infrastructure with Central Identity Management in 261 schools in Cologne

A large-scale project is currently under way in Cologne, Germany: the setup of a standardized, centralized identity infrastructure for all schools. This is set to include considerable simplification of the software distribution and the administration via the education authority over the coming years and measures to ensure that the schools in Cologne are ready for the digitalization of education.

MediaWiki – a Culture of Sharing Your Knowledge

Bild von alten Büchern

Enterprise wikis are about technology and features – but also about the main principle of sharing.

Wikis were a small cultural revolution. The idea behind it: Different people join online to collaboratively write texts, review them, discuss changes, improve, supplement, link and categorize them. And through this work and combined knowledge of many people a powerful central knowledge base is created in which you almost always find what you need to know.

Wikipedia has consistently thought through the model of openly exchanging knowledge and made it popular. For 17 years Wikipedia has been the place to go for knowledge on the Web while the use of wikis has been spreading in companies, too. The open source software TWiki (1998) or the proprietary Confluence (2004) paved the way for the triumphant march of wiki technology in companies. Of course, the Wikipedia software MediaWiki (2002) also plays a part in the story about wikis in companies. But more on that in a moment.

Guide to Your Private UCS Server with ownCloud, Kopano & Let’s Encrypt

Have you ever thought?: “It’s enough! I finally want to set up my own robust, powerful server at home to put an end to the permanent threat that someone might hack my precious data.”

I did! And today, I’d like to share with you here all the necessary steps that are required for this. In addition to UCS, my home server scenario also includes a software bundle made up of groupware, mail, and file exchange software, i.e. ownCloud and the Kopano apps. This bundle make proprietary mail and groupware solutions redundant if you like. In addition, I also show you how to install Let’s Encrypt so that the connections to your UCS server will be well protected, too.