user/device access control: allow only whitelisted users/devices
-
Hi all,
it would be great to see users/device access control added to z-push.
There is an old request on the z-push forum about this from liverpoolfcfan. It didn’t get much attention, but it looks like this functionality could be implemented without too much effort.Many thanks in advance.
-
Hi @rosch,
you did not specify which backend or version of Z-Push you are using, but the functionality to allow/deny users using Z-Push at all is already possible for years.
Regards Felix
Resources:
https://kopano.com/blog/how-to-get-kopano/
https://documentation.kopano.io/
https://kb.kopano.io/Support overview:
https://kopano.com/support/ -
@fbartels Ok that’s great news. For some reason I missed that one.
I’m using z-push 2.6.2+0 with zimbra back-end (revision 70).
-
@fbartels I know with the kopano-backend there is a feature switch “mobile” at user level.
The much more interesting thing is to use a whitelist of allowed devices (device-id). I know there is some problematic with that id but i think it is much better than without that.
We want access only for devices which belong to our company and not some additional private devices.
So unknown devices should filtered out directly with z-push wich is located in our DMZ.
Regards Thomas -
@hooge exactly like you describe it. A whitelist is necessary.
Users are allowed by default, but any new device is a risk because you don’t know if the device belongs to the correct user or an attacker who got hold of the user’s credentials.
You’ll get the id with the initial connection attempt, and from there you allow the ids or not.
That would be an ideal solution and could be done with z-push-admin.
