12:23 a.m.
Hello,
I'm looking forward to add 2FA, SAML2 & OIDC interfaces to my
authentication services running on FreeIPA. Are there any recommended
integrations?.
I'm thinking about implementing Authelia or Keycloak. My main concern is
the first forced password change & following password expirations (should
not be able to proceed without changing password and yet be able to change
it). Would pretty much prefer "self service" by the end user.
Regards,
CI.-
12:26 a.m.
Lemonldap maybe?
On Thu, Sep 23, 2021, 01:23 Ciro Iriarte <cyruspy(a)gmail.com> wrote:
Hello,
I'm looking forward to add 2FA, SAML2 & OIDC interfaces to my
authentication services running on FreeIPA. Are there any recommended
integrations?.
I'm thinking about implementing Authelia or Keycloak. My main concern is
the first forced password change & following password expirations (should
not be able to proceed without changing password and yet be able to change
it). Would pretty much prefer "self service" by the end user.
Regards,
CI.-
7:28 a.m.
Hello!,
I'm looking for feedback regarding which SAML2/OIDC platform would be best
match for FreeIPA.
Regards,
CI.-
On Thu, Sep 23, 2021, 01:26 Ciro Iriarte <cyruspy(a)gmail.com> wrote:
Lemonldap maybe?
On Thu, Sep 23, 2021, 01:23 Ciro Iriarte <cyruspy(a)gmail.com> wrote:
> Hello,
>
> I'm looking forward to add 2FA, SAML2 & OIDC interfaces to my
> authentication services running on FreeIPA. Are there any recommended
> integrations?.
>
> I'm thinking about implementing Authelia or Keycloak. My main concern is
> the first forced password change & following password expirations (should
> not be able to proceed without changing password and yet be able to change
> it). Would pretty much prefer "self service" by the end user.
>
> Regards,
> CI.-
>
9:16 p.m.
On Sat, Sep 25, 2021 at 08:28:29AM -0400, Ciro Iriarte via FreeIPA-users wrote:
Hello!,
I'm looking for feedback regarding which SAML2/OIDC platform would be best
match for FreeIPA.
Regards,
CI.-
Keycloak is my recommendation. We have more experience with
Keycloak integration than other SAML/OIDC IdPs.
Thanks,
Fraser
On Thu, Sep 23, 2021, 01:26 Ciro Iriarte <cyruspy(a)gmail.com>
wrote:
> Lemonldap maybe?
>
> On Thu, Sep 23, 2021, 01:23 Ciro Iriarte <cyruspy(a)gmail.com> wrote:
>
>> Hello,
>>
>> I'm looking forward to add 2FA, SAML2 & OIDC interfaces to my
>> authentication services running on FreeIPA. Are there any recommended
>> integrations?.
>>
>> I'm thinking about implementing Authelia or Keycloak. My main concern is
>> the first forced password change & following password expirations (should
>> not be able to proceed without changing password and yet be able to change
>> it). Would pretty much prefer "self service" by the end user.
>>
>> Regards,
>> CI.-
>>
>
_______________________________________________
FreeIPA-users mailing list -- freeipa-users(a)lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-leave(a)lists.fedorahosted.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedoraho...
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
942
days inactive
946
days old
freeipa-users@lists.fedorahosted.org
3 comments
2 participants
participants (2)
-
Ciro Iriarte -
Fraser Tweedale