Hello,
I'm looking forward to add 2FA, SAML2 & OIDC interfaces to my authentication services running on FreeIPA. Are there any recommended integrations?.
I'm thinking about implementing Authelia or Keycloak. My main concern is the first forced password change & following password expirations (should not be able to proceed without changing password and yet be able to change it). Would pretty much prefer "self service" by the end user.
Regards, CI.-
Lemonldap maybe?
On Thu, Sep 23, 2021, 01:23 Ciro Iriarte cyruspy@gmail.com wrote:
Hello,
I'm looking forward to add 2FA, SAML2 & OIDC interfaces to my authentication services running on FreeIPA. Are there any recommended integrations?.
I'm thinking about implementing Authelia or Keycloak. My main concern is the first forced password change & following password expirations (should not be able to proceed without changing password and yet be able to change it). Would pretty much prefer "self service" by the end user.
Regards, CI.-
Hello!,
I'm looking for feedback regarding which SAML2/OIDC platform would be best match for FreeIPA.
Regards, CI.-
On Thu, Sep 23, 2021, 01:26 Ciro Iriarte cyruspy@gmail.com wrote:
Lemonldap maybe?
On Thu, Sep 23, 2021, 01:23 Ciro Iriarte cyruspy@gmail.com wrote:
Hello,
I'm looking forward to add 2FA, SAML2 & OIDC interfaces to my authentication services running on FreeIPA. Are there any recommended integrations?.
I'm thinking about implementing Authelia or Keycloak. My main concern is the first forced password change & following password expirations (should not be able to proceed without changing password and yet be able to change it). Would pretty much prefer "self service" by the end user.
Regards, CI.-
On Sat, Sep 25, 2021 at 08:28:29AM -0400, Ciro Iriarte via FreeIPA-users wrote:
Hello!,
I'm looking for feedback regarding which SAML2/OIDC platform would be best match for FreeIPA.
Regards, CI.-
Keycloak is my recommendation. We have more experience with Keycloak integration than other SAML/OIDC IdPs.
Thanks, Fraser
On Thu, Sep 23, 2021, 01:26 Ciro Iriarte cyruspy@gmail.com wrote:
Lemonldap maybe?
On Thu, Sep 23, 2021, 01:23 Ciro Iriarte cyruspy@gmail.com wrote:
Hello,
I'm looking forward to add 2FA, SAML2 & OIDC interfaces to my authentication services running on FreeIPA. Are there any recommended integrations?.
I'm thinking about implementing Authelia or Keycloak. My main concern is the first forced password change & following password expirations (should not be able to proceed without changing password and yet be able to change it). Would pretty much prefer "self service" by the end user.
Regards, CI.-
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahoste... Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
freeipa-users@lists.fedorahosted.org
-
Ciro Iriarte -
Fraser Tweedale