Point Release UCS 4.4-1: performance improvements, app recommendations and UDM REST API Beta

Our first point release of UCS 4.4 includes all minor improvements and bugfixes of the Errata updates released over the past months, but it also brings some exciting new features.

Univention Directory Manager (UDM): More performance, improved functionality and a new REST API as beta version

There are significant performance improvements for managing the contents of the directory service via UDM, especially for application scenarios with complex structures. There have also been further minor improvements in DNS management, where the search for IP addresses is now enabled in further modules, as well as in the use of standard containers of domain controller objects.

UDM REST API (beta version) released: The new interface for accessing all content in the directory service

With the beta release of the REST API for the Univention Directory Manager (UDM), a preliminary version of the future standard interface for the integration of applications with the Univention directory service is available. In the following, I would like to give you a brief overview of the objectives and use cases regarding the current status of the API and encourage you to test it – we look forward to your feedback for further improvements for the final version!

What is the „UDM REST API“?

A “REST API” (also called “RESTful API”) is a web service that allows integration between applications.
The REST API of the Univention Directory Manager provides access to all contents of the Univention Corporate Server (UCS) directory service. Its functionality is therefore comparable to that of the already available and further existing scripting interfaces (e.g. the “udm” command line tool). In contrast to these, however, the API is accessible via the web through HTTPS and can be more easily integrated into existing applications using standardized data formats (JSON).

Brief Introduction: SAML- a secure, comfortable web access

SSO-SAML-UCS
SAML – meaning „Security Assertion Markup Language“ – is a standard which enables a Single Sign-On (SSO). Users only log in once and are able to use other programs and services automatically. UCS supports SSO with SAML as well. That‘s why users get not only a central identity by using SAML but also a central log-in with UCS, making web-based working more secure and comfortable.

Journaling for Sysadmins: Admin Diary

“When did I install or remove which app, and when was the last time the password for the UCS server was changed?” Answers to these and many other questions can be found in the Admin Diary, which we introduced with UCS 4.4. It provides a quick overview of all administrative events in a UCS domain, such as software and app installations and updates, creation, modification and deletion of users and other directory service objects, password changes, etc.

Strictly speaking, the new diary consists of two apps that you can easily install in your UCS environment through the Univention App Center: the Admin Diary Backend and the Admin Diary Frontend. The backend collects data from all UCS instances in the domain and stores it in a database. The frontend provides access to this log via a module of the Univention Management Console (UMC) and displays the events.

In this blog article, I will introduce you to both apps and also explain how to run backend and frontend on two different computers. This may be useful, for example, if there already is a dedicated database server in your environment: Then you install the backend there. The frontend will be installed on that system, on which you normally use the UMC (e.g. the Master). Let’s start with the standard option: both on one system.

The Gateway to your IT – (New) Functions of the UCS Portal

For some time now, the portal with its modern appearance and easy administration has been the central entrance to a UCS domain for users and administrators alike. My colleague Johannes has already described the most important functions of the portal in our article How to Configure the UCS Portal Easily with Drag & Drop. With UCS 4.4, we added some new features which I would like to introduce you to in this article.

UCS 4.4: How to configure RADIUS

RADIUS (Remote Authentication Dial-In User Service) is a central component of UCS and enables you to control access to WLAN networks for users, groups, and devices. In January we published a blog post with a short introduction to RADIUS, and in this article I’m going to explain how to set up RADIUS for your UCS domain. This article also covers the new features in UCS 4.4.

UCS 4.4 Release – Admin Diary, Self Services and Windows Domain Trusts

After the extensive updates of the basic distribution with the release of UCS 4.3, our focus during the development of UCS 4.4 was on the implementation of new functionalities: The enhancements include new functions in Self Services, in the Portal, in Radius Integration and in Services for Windows. In addition, the Admin Diary is a new app with which events on the different systems or in the management system can be tracked and commented.

How-To: Securing Networks with RADIUS

UCS-Radius-blog-header

Many organizations and educational institutions allow users to work on their personal laptops, tablets and smartphones. Bringing Your Own Device (BYOD) is popular because it reduces the financial burden on businesses and gives users a greater freedom of choice as well as their familiar working environment. Before users connect to the school or corporate Wi-Fi with their personal devices, administrators should think about security so that the devices do not become a gateway for malware.

Third Point Release of Univention Corporate Server 4.3-3

UCS 4.3-3

With UCS 4.3-3 the third point release for Univention Corporate Server (UCS) 4.3 is now available, which includes a number of important updates and various new features.

Improved configurability of the portal

The portal is the starting point for many UCS users and administrators. As described in the blog article Design the UCS Portal with Drag & Drop, you can adapt it very easily to your needs. The categories “Applications” and “Administration” were static until now. We have extended the portal so that you can now define your own categories. In addition, you can add static links to the portal, e.g. also link an imprint here.