feature to use private keys rather than username and password
-
hello.
i was thinking that if we cant do fido support, we could at least have it to where all users of your cloudron have to have a private key.
kinda like an ssh public/private keypare.
then, those keys can be encrypted using a hardware security module [hsm] like nethsm
that would be cool.
then, based on the private key given, it can determine the user trying to login.
that would also be cool
thanksmy website is not available right now
-
hello.
i was thinking that if we cant do fido support, we could at least have it to where all users of your cloudron have to have a private key.
kinda like an ssh public/private keypare.
then, those keys can be encrypted using a hardware security module [hsm] like nethsm
that would be cool.
then, based on the private key given, it can determine the user trying to login.
that would also be cool
thanks@adison in the meantime you can require all users to use 2FA if you want to https://docs.cloudron.io/user-management/#mandatory-2fa
Personally I don't require this for my users, but I do have it set-up for myself as the admin.
-
@adison in the meantime you can require all users to use 2FA if you want to https://docs.cloudron.io/user-management/#mandatory-2fa
Personally I don't require this for my users, but I do have it set-up for myself as the admin.
@jdaviescoates i did that aas well however, my employees complain all the time about its hard to login.
-
@girish by the way, the reason why i've put this is even though we have the, fido support, post, it seams nebulon (not sure how you say that) is having trouble getting that done.
a private/public key approch, if thats the case, would be a good alternative. kinda like an ssh public/private keypare. -
-
go passkey with Cloudron, much better!
@RazielKanos i think nebulon has tryed that, but its not going well for them. by the way, if you didn't see it, here is the post
