How-To: Securing Networks with RADIUS

Many organizations and educational institutions allow users to work on their personal laptops, tablets and smartphones. Bringing Your Own Device (BYOD) is popular because it reduces the financial burden on businesses and gives users a greater freedom of choice as well as their familiar working environment. Before users connect to the school or corporate Wi-Fi with their personal devices, administrators should think about security so that the devices do not become a gateway for malware.

Third Point Release of Univention Corporate Server 4.3-3

UCS 4.3-3

With UCS 4.3-3 the third point release for Univention Corporate Server (UCS) 4.3 is now available, which includes a number of important updates and various new features.

Improved configurability of the portal

The portal is the starting point for many UCS users and administrators. As described in the blog article Design the UCS Portal with Drag & Drop, you can adapt it very easily to your needs. The categories “Applications” and “Administration” were static until now. We have extended the portal so that you can now define your own categories. In addition, you can add static links to the portal, e.g. also link an imprint here.

Multi Container Support for Docker Apps for Univention App Center

Container technology Docker Logo

Since the release of UCS 4.1 in November 2015, the App Center has supported Docker apps. These are applications in the form of Docker images that are deployed by the App Center in a Docker container. To do this, the App Center downloads the Docker image of an app and starts the Docker container. We call these apps “Single Container Apps” because the App Center only supports one container per app. This functionality is sufficient for many apps.

Until now!

In the Univention App Center: OpenID Connect Provider

OpenID Connect Provider-01-01

With the development of the OpenID Connect Provider App, which we announced at the Univention Summit 2018, we have taken another important step towards making UCS a secure and open platform for managing a wide range of services.

The goal we are pursuing: All UCS users should retain full control over their data and digital identities at all times. Also they should have the greatest possible and free choice between different software applications.

News from The Univention Development Team

It‘s been only four weeks that we published UCS 4.3-2, and we already have some more news for you from our development team.

UCS 4.2-5

Two weeks ago we published UCS 4.2-5. Essentially this release bundles the nearly 100 errata updates, mainly security updates and stabilizations that were released for UCS 4.2-4. The upcoming errata updates for UCS 4.2-5 will only be available for customers with an enterprise subscription. If you are a Core Edition user, we therefore recommend you to update to UCS 4.3 so that you continue to receive security updates in the future.

UCS 4.3-2 Published! New: Maintenance Mode for Release Updates …

Univention Corporate Server Logo
With UCS 4.3-2, the second point release for Univention Corporate Server (UCS) 4.3 is now available, which includes a number of security updates and various new features.

New: UCS maintenance mode

UCS 4.3-2 now offers a maintenance mode for importing release updates via Univention Management Console (UMC). UMC is the web-based, graphical user interface for the administration of the entire domain. In the past, when a release update was recorded, short-term failures of the UMC could occur, for example, because the updated services were restarted.

New: UCS Dashboard Facilitates Administrator Monitoring

In the UCS Dashboard app, we now have the first (beta) version of a new dashboard based on the Open Source solutions Grafana and Prometheus. The app allows administrators to check the status of domains and individual servers on different dashboards quickly and simply. The dashboards can be accessed simply via a web browser, access a database in the background, and deliver updated reports on certain aspects of the domain or servers continually.

How UCS synchronizes Linux/Windows IT Infrastructures with Samba AD

The central management of a heterogeneous network has always been UCS’ strength. This was our goal from the beginning to provide a platform that bridges the Linux/Windows worlds. But how does the synchronization between UCS and Microsoft Windows actually work? The problem is that Windows doesn’t speak the same language as UCS. They don’t support the standard-compliant LDAP protocol that allows the communication between the server and clients in UCS. Microsoft has chosen a different approach for its Active Directory.

Let me explain you today which exact technologies we introduced in Univention Corporate Server to provide a solution to this problem. Among other things, I give you details about the replication process via listener/notifier for OpenLDAP, DRS replication for the Active Directory and the Univention S4 Connector, which synchronizes between Microsoft Windows and Linux.