• Justin Mirsky
    0
    Hello,

    We are really pushing heavily for all of our systems to utilize our standardize authentication method and would love to see SAML 2.0 IDP initiated authentication to be supported by the Cloudberry management platform. This would allow us (and others) to integrate our authentication and identities into a single source such as AzureAD/Okta/OneLogin/Other.

    This is a big requirement for us and is a big deciding factor for us when choosing new platforms going forward. OTP codes are not enough to secure access to critical systems anymore as these have been proven to be compromised in the wild.

    I would be happy to provide additional details if you require them.


    Justin M.
  • David Gugick
    61
    Just to confirm, you're saying that in your case using Google or Microsoft Authenticator for 2FA to access the management console is insufficient for your security requirements? In the meantime, I'll go ahead and log your request in the system. Thanks.
  • Justin Mirsky
    0


    Yes, we do not want to have separate usernames + Google Authenticator OTP codes. It suffices for now, but we have increased security requirements coming from our customer that require biotmetric authentication to access their systems. We are implementing these changes and have a SAML provider that does this for us, but we need our systems to suppor SAML 2.0 authentication to make this happen.

    Recently, Google OTP codes were hacked in the wild and these are starting to get labeled as less secure than other methods (like how SMS is no longer considered secure). Our requirement needs to allow us to FORCE SAML authentication and turn off the use of Username+Password+OTP Codes.
  • David Gugick
    61
    We have an open SAML 2.0 feature request in the system. I have added you to the request.
  • Justin Mirsky
    0


    Thank you! I didn't see it, so I created a new request. Cheers!
  • Satyen Vora
    0
    Any updates on this? Our org is also heavily pushing using SAML for everything and IAM is no longer being supported as a business process.
  • David Gugick
    61
    Thanks for reaching out. I have added your request to the open requirement and will speak to the team to discuss further to see about getting it scheduled for a release.
bold
italic
underline
strike
code
quote
ulist
image
url
mention
reveal
youtube
tweet
Add a Comment

Welcome to MSP360 (CloudBerry) Forum!

Thank you for visiting! Please take a moment to register so that you can participate in the discussions!