Univention and MariaDB Offer Support for the Fail-Safe Operation of Keycloak in UCS

Since last year, the single sign-on solution Keycloak has been a central component of our identity and access management strategy. With Keycloak, third-party applications can log on to the system using standard protocols such as SAML and OpenID Connect. This means that users only have to log on once centrally and can then access all enabled services.

Outlook on the Upcoming Role Design in UCS and UCS@school

Since our last blog article on the future role model, we have made significant progress in transforming the UCS role and rights model. The custom role design, currently under development, is taking shape. In this article, we would like to focus on introducing two promising new components: One of them allows you to evaluate the permissions of a role, while the other is a web module that allows you to create your own roles. Let’s see what else awaits us until the end of the year.

Sex Education – Easier Than Ever to Integrate into the Classroom with KNOWBODY and the Univention ID Broker

Knowbody ID Broker
We are pleased to announce the latest addition to the Univention ID Broker. KNOWBODY, a young and innovative company, now makes sexual education more interactive and personal than ever before. Using videos, short games, 3D animations and even voice messages, students are introduced to the topic in a unique way. Read on to learn more about the exciting possibilities of this app from Carolin Strehmel.

New Features for Keycloak as Upcoming Standard Identity Provider of UCS

With UCS 5.2 Keycloak will become the standard IDP for SAML and OpenID Connect authentication and will replace the current SimpleSAMLPHP and Kopano Connect apps. Read more about the big picture in our blog article Migration of the Identity Provider in UCS – Keycloak App now Part of the Support Scope. The first step we made was the release of Keycloak as a supported Univention app at the end of 2022. Since then, a lot of work has been done to make the Keycloak app a worthy replacement for the SimpleSAMLphp integration.

So, we are making steady progress on our mission to reach feature parity with our SimpleSAMLphp integration. And since the initial release of the Keycloak app, we have also released several app updates each adding new features in terms of a smooth integration into UCS and more configurability.

In this article, we would like to showcase some of the work that has been done over the last few months.

End of Migration: Orange Celebrated Successful UCS Project Completion

Orange Migration UCS
When we at Orange decided to renew our e-mail platform, we could not yet know that we would celebrate the successful end of migration on the 5th of July 2022 in our headquarters in Paris with more than 200 guests. We initiated the project back in 2014 and are now able to look back on eight years of successful cooperation with Univention that led to our new e-mail platform. Its main components are the e-mail back-end solution Dovecot, the groupware Open-Xchange as webmail and PIM solution, and the identity management Univention Corporate Server (UCS), which today manages the user identities of about 13 million active mailboxes.