First Last Prev Next    This bug is not in your last search results.
Bug 51933 - Support FIDO2 standard for user authentication
Support FIDO2 standard for user authentication
Status: NEW
Product: UCS
Classification: Unclassified
Component: SAML
UCS 5.0
Other Linux
: P5 normal (vote)
: ---
Assigned To: UCS maintainers
UCS maintainers
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2020-08-31 13:38 CEST by Nico Gulden
Modified: 2021-07-06 10:38 CEST (History)
5 users (show)

See Also:
What kind of report is it?: Feature Request
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number: 2020070621000524
Bug group (optional): External feedback
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Nico Gulden univentionstaff 2020-08-31 13:38:50 CEST 
Customers made a feature proposal to support the FIDO 2 standard for user authentication in UCS. Fido 2 is described here https://loginwithfido.com/ and here https://fidoalliance.org/fido2/.

See Ticket#2020070621000524
Comment 2 Cornelius Kölbel 2020-11-11 12:51:00 CET 
privacyIDEA supports FIDO2 token management as a 2nd factor for the user.

Thus, using the privacyIDEA SAML plugin for simpleSAMLphp you could add FIDO2 to the UMC/IdP.

However, we still need to add the authentication code into the simpleSAMLphp Plugin here:
https://github.com/privacyidea/simplesamlphp-module-privacyidea

However, this is definitively less coding effort than adding the complete registration and management functionality, which is already covered by privacyIDEA.
Comment 3 Philipp Hahn univentionstaff 2020-11-20 18:01:01 CET 
Customer asked for 2FA at
TT 2020-11-19/20
First Last Prev Next    This bug is not in your last search results.