UCS 4.4: How to configure RADIUS

RADIUS (Remote Authentication Dial-In User Service) is a central component of UCS and enables you to control access to WLAN networks for users, groups, and devices. In January we published a blog post with a short introduction to RADIUS, and in this article I’m going to explain how to set up RADIUS for your UCS domain. This article also covers the new features in UCS 4.4.

Access your Desktop remotely with Guacamole

190618-guacamole-blog-header
If you’re looking for a way to maintain your computers remotely, maybe Guacamole is the answer. The remote desktop gateway offers easy access to your systems – any time and from any location. All you need is a web browser: Guacamole is a HTML5 web application. Not long ago we’ve included the program in the Univention App Center, so your remote desktop solution for UCS is only a few clicks away. This article explains how to install, configure and use Guacamole.

How-To: Single Sign-On for Nextcloud

sso_ucs_nextcloud_Blogheader

Log in once and automatically gain access to all programs and services – Single Sign-On (SSO) is a proven tool against the ever-increasing password fatigue among users. This is why many companies and educational institutions make it possible for users to log on centrally and only once.
It is also easy to set up Single Sign-On with UCS (see links at the end of this article). In this article I would like to show you how to link Nextcloud to UCS’s SSO mechanism.

Backup your Windows PCs: Bareos in the Univention App Center | Part 2

In February this year, we published a blog post on how to install the Bareos app via the Univention App Center. We explained how to modify the setup by adjusting some UCR variables and how to configure Windows or Linux computers from the UCS domain as Bareos clients. In this second part, we will explain in more detail how to back up a Windows client and how to configure backup jobs and schedules Bareos.

Linux and Windows Backups: Bareos in the Univention App Center | Part 1

In the App Center, our partner Univention provides a growing number of applications from different manufacturers. All programs can be installed and set up with just a few clicks. They’ve also integrated our Open Source backup solution: Bareos is licensed under AGPLv3 and specializes in heterogeneous IT landscapes. So, if you’re running UCS, the App Center provides you with a professional backup solution for your Windows and Linux machines in your UCS domain.

Secure in the Cloud – Two-Factor Authentication for Single Sign-On

privacy-id3a-authentication-system-logo-blog-header

Today many services are offered as web applications. This can be self-hosted systems such as ownCloud or Kopano or cloud services such as the Google G Suite / Google Apps for Work.

The number of services a user uses for his daily work is constantly increasing. So the desire for Single Sign-On is understandable. The user logs on centrally once and can then use all connected services without further authentication. The implementation of Single Sign-On was already described in more detail in the article Brief Introduction: SAML.

But in all cases, whether it is their ownCloud instance or Google G Suite, the user logs on to a web application that is available on the Internet. The login is accessible from everywhere – but also for everyone – and is therefore an interesting target for crackers, cyber criminals and industrial spies.

With the new version of the privacyIDEA SAML App companies can decisively increase the security of the Single Sign-On process.

Multi Container Support for Docker Apps for Univention App Center

docker-logo-blog-header

Since the release of UCS 4.1 in November 2015, the App Center has supported Docker apps. These are applications in the form of Docker images that are deployed by the App Center in a Docker container. To do this, the App Center downloads the Docker image of an app and starts the Docker container. We call these apps “Single Container Apps” because the App Center only supports one container per app. This functionality is sufficient for many apps.

Until now!

In the Univention App Center: OpenID Connect Provider

OpenID Connect Provider-01-01

With the development of the OpenID Connect Provider App, which we announced at the Univention Summit 2018, we have taken another important step towards making UCS a secure and open platform for managing a wide range of services.

The goal we are pursuing: All UCS users should retain full control over their data and digital identities at all times. Also they should have the greatest possible and free choice between different software applications.