Hi Jimmy,
Here is the document related to 2FA having all related details how to enable
and disable 2FA.
http://docs.cloudstack.apache.org/en/latest/adminguide/accounts.html#using-two-factor-authentication-for-users
If you are an user and if you have logged in, then go to right top >>
Hi,
I want to enable 2FA for admin user as well for security, but in case for some
reason this stops working, gets lost or whatever the reason may be. Is there a
way we can remove it so you can login again?
We have physical access to the servers of course.
--
Jimmy
Hi Harikrishna
Thanks for info.
We will wait for 4.18 release then.
David Larsen
-Opprinnelig melding-
Fra: Harikrishna Patnala
Sendt: fredag 18. november 2022 08:36
Til: users@cloudstack.apache.org
Emne: Re: Cloudstack user logins with 2FA and Google Authenticator
Hi David,
2FA
Hi David,
2FA framework and plugin is under development and planning to make it in 4.18
release. It is not available in 4.17.1.
You can find some details about the feature here at
https://cwiki.apache.org/confluence/display/CLOUDSTACK/2FA+Framework+and+Plugins
Regards,
Harikrishna
From: David
Hi
We are currently working on how to integrate Cloudstack (4.17.1.0) logins with
Google and Google authenticator.
Is there any “this is how you do it” documents out there for Cloudstack. I
found some info related to it , but no luck yet… ☹
I saw the “2FA Framework and Plugins” document from
mail based OTP 2FA plugin
too.
Regards.
From: vas...@gmx.de
Sent: Monday, November 29, 2021 17:14
To: users@cloudstack.apache.org
Subject: Re: [DISCUSS] 2FA framework and plugins for CloudStack
Hi Rohit,
this sounds awesome and for me it is a absolute +1
Hi Rohit,
this sounds awesome and for me it is a absolute +1, as in my organization
this is a major concern with cloudstack atm.
Regarding the puprosed " general-purpose 2FA plugins":
I would suggest to exchange the PIN - option against another type of
factor, as as far i am aw
All,
During CCC21 hackathon, I explored the feasibility of a 2FA framework and a
TOTP (time-based OTP) plugin that can be used with Google Authenticator, MS
Authenticator, Authy etc.
I've used ideas of TOTP based 2FA PoC to put together a design doc for
discussion:
https://cwiki.apache.org
Hi Rakesh,
We have a user authentication/login framework that you can extend to do 2FA.
Something like (throwing ideas at you):
* Implement separate API to do 2FA (general purpose) and implement 2FA
plugin-framework (plugins can be sms, captcha, google authenticator)
* In UI - the 2FA
Hi Rakesh,
MFA is generally done via an IAM rather than on a per-application basis. As
Simon had mentioned, CloudStack does support SAML / LDAP so, in a general /
corporate use case, the MFA would go there. So I do not think adding support
for 2FA will add any significant benefit
That being
Rakesh,
ACS does support SAML2 and in order to deploy 2FA/MFA, you could integrate it
with an Identity and Access Management System such as Keycloak
(https://www.keycloak.org/).
-Si
From: Rakesh Venkatesh
Sent: Tuesday, August 10, 2021 4:34 AM
To: users ; dev
Hello
Has anyone thought about 2FA or about how to implement it in cloudstack?
Looks like this will be good addition to enhance the security. I have some
idea about implementing in the backend but dont have much idea on how to
display the QR code in ui or other functionalities which is needed
ons (including 2FA) as a identidy and
> access management.
>
> It supports SAML, so any applicaion with SAML including CloudStack can
> be connected.
>
> [1] https://www.keycloak.org/about.html
>
> On 11/13/18 6:56 PM, Matheus Fontes wrote:
> > Hi,
> > Is there a
We use keycloak [1] as a SSO solutions (including 2FA) as a identidy and
access management.
It supports SAML, so any applicaion with SAML including CloudStack can
be connected.
[1] https://www.keycloak.org/about.html
On 11/13/18 6:56 PM, Matheus Fontes wrote:
> Hi,
> Is there
yes, I think google supports SAML (identity federation protocol that is
supported by ACS). Therefore, you can integrate ACS with Google IdP.
On Tue, Nov 13, 2018 at 3:57 PM Matheus Fontes wrote:
> Hi,
> Is there anyway to implement Google Authenticator (or other free solution)
> as 2-step
Hi,
Is there anyway to implement Google Authenticator (or other free solution) as
2-step verification on ACS?
thanks
Matheus Fontes
16 matches
Mail list logo