user/device access control: allow only whitelisted users/devices
you did not specify which backend or version of Z-Push you are using, but the functionality to allow/deny users using Z-Push at all is already possible for years.
@fbartels Ok that’s great news. For some reason I missed that one.
I’m using z-push 2.6.2+0 with zimbra back-end (revision 70).
hooge last edited by
@fbartels I know with the kopano-backend there is a feature switch “mobile” at user level.
The much more interesting thing is to use a whitelist of allowed devices (device-id). I know there is some problematic with that id but i think it is much better than without that.
We want access only for devices which belong to our company and not some additional private devices.
So unknown devices should filtered out directly with z-push wich is located in our DMZ.
@hooge exactly like you describe it. A whitelist is necessary.
Users are allowed by default, but any new device is a risk because you don’t know if the device belongs to the correct user or an attacker who got hold of the user’s credentials.
You’ll get the id with the initial connection attempt, and from there you allow the ids or not.
That would be an ideal solution and could be done with z-push-admin.