AWS Lightsail: Ubuntu 16: spf, dkim, dmarc

Posted Leave a commentPosted in *nix, AWS, Cloud, security

https://www.linuxbabe.com/mail-server/setting-up-dkim-and-spf DNS Entries hensler.net TXT “v=spf1 ip4:3.225.201.202 ~all” default._domainkey.hensler.net. TXT “v=DKIM1;k=rsa;” “part I” “part II” _dmarc TXT v=DMARC1; p=none; pct=100; rua=mailto:dmarc-reports@hensler.net DNS Type SPF use has been removed in the standards track version of SPF, RFC 7208. Your DNS Type SPF record should be republished as Type TXT instead. dig hensler.net txt http://spf.myisp.ch/ https://www.kitterman.com/spf/validate.html? spf […]

OAuth/OIDC with ISAM

Posted Leave a commentPosted in IBM, projects, security

Design and implement OAuth/OIDC authentication process for mobile clients (native/html) using ISAM (IBM Security Access Manager) and authorisation code grant type. Integrate custom “Message Provider Gateway” (MSG) in authentication process (verification of access token) using OIDC JWKS (JSON Web Key Set) and /userinfo endpoints. Products used: IBM Security Access Manager

IBM Cloud Identity & IBM Connections Cloud

Posted Leave a commentPosted in Collaboration, projects, security

The intention of this project was to provide a consistent Single-Sign-On (SSO) between an on-premise ISAM (IBM Security Access Manager) and IBM’s Cloud Identity (CI) using SAML by utilising local user accounts for authentication. MMFA (Mobile Multi Factor Authentication) with QR Code and TOTP (Timely One Time Password) was added to provide a 2-factor authentication […]