privacyIDEA Appliance, UCS, LDAP-Proxy, FrOSCon und it-sa

privacyIDEA Appliance

Our enterprise customers may now install and configure privacyIDEA as a privacyIDEA appliance, based on the Ubuntu 16.04 enterprise packages. This way customers get an additional flover in addition to the python package index, CentOS, RHEL, Debian and Ubuntu for running and maintaining privacyIDEA. The Appliance allows easy setup of MySQL Master-Master-Replication, RADIUS clients and Backup and Restore. It also helps to manage the Audit log.
You may read more about the privacyIDEA Appliance in our blog post or take a look at it in action in the youtube channel.

privacyIDEA 2.19.1 available on the Univention Corporate Server 4.2

The current enterprise version 2.19.1 of privacyIDEA is now available on the Univention Corporate Server 4.2. The last version on the Univention Corporate Server was 2.18.1. With version 2.19.1 privacyIDEA is also available on the new Release 4.2 of the Univention Corporate Server. Thus customers running privacyIDEA on UCS 4.1, may easily upgrade UCS to 4.2.
Read more about this in our blog.

privacyIDEA LDAP Proxy available

The privacyIDEA LDAP Proxy is now available as ready made product. The LDAP Proxy allows an easy integration of arbitrary native applications or web applications which only allow authentication via LDAP. This way no addition plugin is necessary. The privacyIDEA LDAP Proxy acts as broker between the application, the LDAP directory or Active Directory and privacyIDEA.
Read more about the privacyIDEA LDAP Proxy on our website.


Pick your calendar and write down some dates for interesting upcoming events!
At the end of summer Friedrich Weber and Cornelius Kölbel will give a talk about the privacyIDEA LDAP Proxy at the FrOSCon conference. NetKnights is also exhibitor and sponsor of FrOSCon and you will be able to ask everything you ever wanted to know about privacyIDEA and especially two factor authentication with LDAP.
FrOSCon takes place on August 19th and 20th in St. Augustin at the University Bonn-Rhein-Sieg, Germany.
You may also take a look at Cornelius’ previous, enjoyable talks (German) “Alles meins!” and “Am Puls der Zeit” on Youtube.
In October 2017 NetKnights will be at the it-sa, the biggest German IT-Security fair in Nuremberg. NetKnights will also have a stand there. Read more about this in our blog post.

NetKnights at IT Security Expo and Congress it-sa

This year NetKnights will be at the IT Security Expo and Congress “it-sa” together with the partners bytemine and Rempartec.  it-sa takes place once a year in Nuremberg, Germany in autumn. This year it is October 10th-12th 2017. During the last years up to 500 exhibitors presented new services and products in the field of IT Security. it-sa attracts over 10.000 visitors every year.

News about NetKnights and privacyIDEA

Use this chance to also get all news about NetKnights and privacyIDEA first hand! Learn more about privacyIDEA Enterprise Edition, the privacyIDEA Appliance or the privacyIDEA LDAP-Proxy.

Visit us in Hall 10.1, stand 208 – right accross from Cisco Systems or make up your personal date!

privacyIDEA 2.19 – Performance, U2F and secure Smartphone Apps

Today we released privacyIDEA 2.19. Packages are available in the Launchpad-Repos for Ubuntu 14.04LTS and 16.04LTS. You can also install privacyIDEA on any Linux distribution using the python package index.

New Features in privacyIDEA

Authentication performance

privacyIDEA 2.19 is up to 72% faster!

In tests in the lab privacyIDEA 2.19 shows improved performance. Authentication requests are up to 72% faster than in the previous version. This is also due to a new generic user cache. This user cache stores the link between login name and user object in the local SQL database. Thus time consuming requests to the originial user store like LDAP servers or Active Directory get obsolete.

Filter U2F devices for the users

Using policies the administrator can define which type of U2F device the user is allowed to register. In further policies the administrator can also define, which U2F types the users can use to authenticate at certain applications. This way the usage of certain U2F devices can be denied in your company or certain devices from specific vendors can be required for login to sensitive systems.

Secure smartphone apps with privacyIDEA

The classical smartphone app enrollment comes with several problems, which privacyIDEA 2.19 can solve.

In a previous blog post we already pointed out the limitations of the usual smartphone enrollment with the Google Authenticator.  As a company or large organization you want to keep control over the enrollment processes of your users. Thus in version 2.19 of privacyIDEA a better rollout possibility was added. The smartphone and the privacyIDEA server do a mutual key generation. Both create a component, the secret key is generated from both components. This avoids easy copying of the QR-Codes.

Read more details in the privacyIDEA Blog.

More functions

Version 2.19 comes with further detail improvements like using the IP address or the browser user agent in the event handler framework. The date and timeformat was consolidated. Now the complete ISO date with timezone is saved to the database. This heavily eases working across timezones in international setups.

You may want to take a look at the complete Changelog.

Enterprise Edition and Consultancy

NetKnights provides consulting and support with the privacyIDEA Enterprise Edition. Using Open Source you optimize your total cost of ownership this way, that there are no external limitations which dictate how long or short your may use the software. Getting the privacyIDEA Enterprise Edition including an SLA you get the warranty and thus operating safety.


You want to stay tuned? Please subscribe to our newsletter!

You want to test the system yourself? Register for a test instance!

You want to know more? Get in touch!