After the extensive updates of the basic distribution with the release of UCS 4.3, our focus during the development of UCS 4.4 was on the implementation of new functionalities: The enhancements include new functions in Self Services, in the Portal, in Radius Integration and in Services for Windows. In addition, the Admin Diary is a new app with which events on the different systems or in the management system can be tracked and commented.
Bremen, March 12, 2019 – Univention has launched the latest release of Univention Corporate Server (UCS). The enhancements of version 4.4 focus on a number of new features, higher security and more comfort. With the application “Admin Diary”, UCS now supports administrators in making administrative activities traceable. For more security, password policies can be defined more strictly and flexibly with the new version. UCS 4.4 has also added support for trusts, which enables the integration of services operated in Microsoft domains. Users can now enjoy an enhanced Self Service that eliminates the need for numerous admin requests. At the same time as UCS, Univention is releasing an updated version of UCS@school specifically for schools and school authorities, making it much easier to connect to external services.
In February this year, we published a blog post on how to install the Bareos app via the Univention App Center. We explained how to modify the setup by adjusting some UCR variables and how to configure Windows or Linux computers from the UCS domain as Bareos clients. In this second part, we will explain in more detail how to back up a Windows client and how to configure backup jobs and schedules Bareos.
If you’re looking for a way to maintain your computers remotely, maybe Guacamole is the answer. The remote desktop gateway offers easy access to your systems – any time and from any location. All you need is a web browser: Guacamole is a HTML5 web application. Not long ago we’ve included the program in the Univention App Center, so your remote desktop solution for UCS is only a few clicks away. This article explains how to install, configure and use Guacamole.
Log in once and automatically gain access to all programs and services – Single Sign-On (SSO) is a proven tool against the ever-increasing password fatigue among users. This is why many companies and educational institutions make it possible for users to log on centrally and only once.
It is also easy to set up Single Sign-On with UCS (see links at the end of this article). In this article I would like to show you how to link Nextcloud to UCS’s SSO mechanism.
In the App Center, our partner Univention provides a growing number of applications from different manufacturers. All programs can be installed and set up with just a few clicks. They’ve also integrated our Open Source backup solution: Bareos is licensed under AGPLv3 and specializes in heterogeneous IT landscapes. So, if you’re running UCS, the App Center provides you with a professional backup solution for your Windows and Linux machines in your UCS domain.
Many organizations and educational institutions allow users to work on their personal laptops, tablets and smartphones. Bringing Your Own Device (BYOD) is popular because it reduces the financial burden on businesses and gives users a greater freedom of choice as well as their familiar working environment. Before users connect to the school or corporate Wi-Fi with their personal devices, administrators should think about security so that the devices do not become a gateway for malware.
Univention invites users, IT experts and technology manufacturers to the 11th Univention Summit in Bremen. Under the motto “Use your Identities”, more than 350 guests will come together on 31 January and 1 February 2019 to converse on the secure use of digital identities and the associated data as well as on the digitisation of education. In addition, numerous IT managers from companies and the education sector will speak about the successful use of open source software in their respective organisations.
The number of services a user uses for his daily work is constantly increasing. So the desire for Single Sign-On is understandable. The user logs on centrally once and can then use all connected services without further authentication. The implementation of Single Sign-On was already described in more detail in the article Brief Introduction: SAML.
But in all cases, whether it is their ownCloud instance or Google G Suite, the user logs on to a web application that is available on the Internet. The login is accessible from everywhere – but also for everyone – and is therefore an interesting target for crackers, cyber criminals and industrial spies.
With the new version of the privacyIDEA SAML App companies can decisively increase the security of the Single Sign-On process.