privacyidea/simplesamlphp-module-privacyidea

Add two factor authentication like OTP to simpleSAMLphp. The second factor is managed in privacyIDEA.

Installs: 1 813

Dependents: 0

Suggesters: 1

Security: 0

Stars: 22

Watchers: 14

Forks: 26

Open Issues: 8

Type:simplesamlphp-module


README

This module adds flexible, enterprise-grade two-factor authentication to simplesSAMLphp.

NOTE: simpleSAMLphp >=v2.0 is not supported yet.

It enables simpleSAMLphp to do two-factor authentication against a privacyIDEA server, that runs in your network. Users can authenticate with normal OTP tokens, Challenge Response tokens like EMail and SMS or using WebAuthn and U2F devices. TiQR is currently not supported.

Installation

It is recommended to install this package using composer. In your saml root dir, execute the following command in the terminal:

composer require privacyidea/simplesamlphp-module-privacyidea

Configuration

Please check the documentation

Customization (Themes)

Please check the documentation

Logfiles

The saml log can be read with journalctl -f. If you encounter any problems that are not logged as errors, set the logging level of simpleSAMLphp to debug by editing {samlDir}/config/config.php. Search for logging.level and set it so SimpleSAML\Logger::DEBUG. Alternatively, the apache error log can be checked for the errors. It is located at /var/log/apache2/error.log.