PrivacyIDEA explained

privacyIDEA is a two factor authentication system which is multi-tenency- and multi-instance-capable. It is open source, written in Python and hosted at GitHub.^[1] privacyIDEA is a LinOTP's fork from 2014.^[2]

Fields of use

privacyIDEA provides an authentication backend for various kinds of applications (including SSH, VPN, as well as web applications such as ownCloud^[3]). Thus it is meant to replace classical proprietary two factor authentication systems such as RSA SecurID or Vasco. It supports single sign-on via SAML.^[4] It is also possible to login with a second factor to Windows desktops using a privacyIDEA Credential Provider.^[5]

Installation

privacyIDEA runs on-premises as a web application on a Linux system. It can be set up quickly and easily.^[6] It can run on Debian, Ubuntu and RedHat.

Authentication devices

privacyIDEA supports a wide variety of authentication devices.^[7] Amongst those are hardware tokens like Feitian C200, the Yubikey by Yubico or other U2F/WebAuthn devices. Many smartphone apps compliant with HOTP and TOTP are also supported.

Notes and References

1. Web site: privacyidea/privacyidea: multi factor authentication system (2FA, OTP) . . 2016-11-23.
2. Web site: Migrate Linotp to privacyIDEA. 14 September 2016 . 2021-08-23.
3. Web site: ownCloud 9.1 comes with integrated Two-Factor-Authentication. ownCloud. 2016-07-22.
4. Web site: privacyIDEA SimpleSAML Plug-In. GitHub. 2021-10-31.
5. Web site: privacyIDEA Credential Provider. NetKnights. 2016-04-12.
6. Web site: Howto install privacyIDEA authentication system. TechReplublic. 2016-07-22.
7. Web site: Supported Tokens. privacyIDEA. 2016-07-22.