2 Questions

21 views
Skip to first unread message

Tom Cole

unread,
Jun 4, 2015, 10:35:42 AM6/4/15
to priva...@googlegroups.com
1) Is it possible to make certain LDAP users admins in PI?
2) Is it possible to have the token list show only TOTP or default to TOTP?

Thanks

Cornelius Kölbel

unread,
Jun 4, 2015, 11:48:51 AM6/4/15
to Tom Cole, priva...@googlegroups.com
Hi Tom,

1) Yes, you can define realms, that will act as administrators.
Thus you can define a useridresolver, that filters on certain users and
add this useridresolver to a realm.
Then you can add this realm to the list of SUPERUSER_REALM in the pi.cfg
file.
https://privacyidea.readthedocs.org/en/latest/installation/system/inifile.html

2) You mean in Enrollment? At the moment this is hardcoded and not
possible. But as a matter of fact, there is an issue reflecting this:
https://github.com/privacyidea/privacyidea/issues/152
And it will probably(TM) be part of the next release 2.4.

Kind regards
Cornelius
> --
> You received this message because you are subscribed to the Google
> Groups "privacyidea" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to privacyidea...@googlegroups.com.
> To post to this group, send email to priva...@googlegroups.com.
> To view this discussion on the web visit
> https://groups.google.com/d/msgid/privacyidea/84139f52-ac66-4c9f-a8c2-a1880b5dc81a%40googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.

--
Cornelius Kölbel
corneliu...@netknights.it
+49 151 2960 1417

NetKnights GmbH
http://www.netknights.it
Landgraf-Karl-Str. 19, 34131 Kassel, Germany
Tel: +49 561 3166797, Fax: +49 561 3166798

Amtsgericht Kassel, HRB 16405
Geschäftsführer: Cornelius Kölbel


signature.asc

Tom Cole

unread,
Jun 4, 2015, 12:46:37 PM6/4/15
to priva...@googlegroups.com
Thanks - that answered my question.

Cornelius Kölbel

unread,
Jun 5, 2015, 5:13:18 AM6/5/15
to privacyidea
Hi Tom,

just pushed the changes so that the UI will reflect the policies.
So you can set an admin- or user-policy to define to only enroll TOTP.

https://github.com/privacyidea/privacyidea/commit/00c107b25b2619e3f231d0b20adbe6ea8b295bfd

This will be available in the next release 2.4.

Kind regards
Cornelius
> --
> You received this message because you are subscribed to the Google
> Groups "privacyidea" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to privacyidea...@googlegroups.com.
> To post to this group, send email to priva...@googlegroups.com.
> To view this discussion on the web visit
> https://groups.google.com/d/msgid/privacyidea/ce43703c-0f11-4093-8be6-a5a97c41e2d4%40googlegroups.com.
signature.asc

Tom Cole

unread,
Jun 5, 2015, 8:55:52 AM6/5/15
to Cornelius Kölbel, privacyidea
Ok - I look forward to implementing it in 2.4.

Thanks

Tom

June 5, 2015 at 05:13
Hi Tom,

just pushed the changes so that the UI will reflect the policies.
So you can set an admin- or user-policy to define to only enroll TOTP.

https://github.com/privacyidea/privacyidea/commit/00c107b25b2619e3f231d0b20adbe6ea8b295bfd

This will be available in the next release 2.4.

Kind regards
Cornelius

June 4, 2015 at 12:46
Thanks - that answered my question.

On Thursday, June 4, 2015 at 10:35:42 AM UTC-4, Tom Cole wrote:
--
You received this message because you are subscribed to a topic in the Google Groups "privacyidea" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/privacyidea/7cX4pgNEduc/unsubscribe.
To unsubscribe from this group and all its topics, send an email to privacyidea...@googlegroups.com.
Reply all
Reply to author
Forward
0 new messages