About eduMFA

eduMFA is a comprehensive authentication system that enhances existing applications with multi-factor authentication, significantly improving security. Originally forked from privacyIDEA version 3.9.2, eduMFA has evolved into a robust solution deeply integrated with Shibboleth, making it particularly suited for academic and research environments. It supports various authentication methods, including OTP devices, challenge-response mechanisms, SSH keys, and the cutting-edge Passkeys technology.

Running on Linux and entirely open-source under the AGPLv3 license, eduMFA offers a flexible and powerful plugin system. This allows for seamless integration with various identity management systems and applications, extending its functionality to meet diverse authentication needs. All features of eduMFA can be used free of charge.

Key Features and Goals

  • Multi-factor authentication support for enhanced security
  • Deep integration with Shibboleth for academic and research environments
  • Support for modern authentication methods, including Passkeys
  • Easy migration path from privacyIDEA and other authentication systems
  • Continuous development based on the scientific community's requirements
  • Focus on using and maintaining up-to-date, current software components
  • Support for the latest Python versions (currently Python 3.8 to 3.12)
  • Official support for container deployment, enabling seamless scaling in Kubernetes clusters
  • eduMFA Authenticator App for push notifications

Why Choose eduMFA?

eduMFA provides robust protection against hacking attacks for IT services in academic networks and beyond. By enabling multi-factor authentication, it renders traditional username-password combinations obsolete. The 'Passkeys' method, a key focus of eduMFA, securely stores authentication keys, accessible only through additional methods like biometric scans or PINs. This approach offers strong resistance to phishing attacks, allows synchronization between compatible devices, and delivers a seamless user experience without compromising on security.

Already in use at several universities across Europe, including institutions in Germany, Czech Republic, and Norway, eduMFA is continuously evolving to meet the dynamic needs of the scientific and broader IT community. Its commitment to using current, up-to-date software ensures that users always have access to the latest security features and improvements.

Support and Development

eduMFA benefits from a strong support network and an active development community:

  • Commercial support, consulting, implementation, 2nd-level support, and managed services are available from trusted companies like DAASI International, GWDG, and Ssystems.
  • The development team includes contributors from leading institutions such as Freie Universität Berlin, GWDG, Hochschule München, and University of Bamberg.
  • This collaborative approach ensures that eduMFA remains at the forefront of authentication technology, addressing real-world needs in academic and research environments.
  • A user mailing list is available for community support and discussions.
  • Issues and feature requests can be submitted on the GitHub repository.

Organizations Using eduMFA

Is your organization using eduMFA? Add it to the list.

Installation

The system is written in Python, uses Flask as the web framework, and an SQL database as the datastore. Installation is straightforward, providing a lean installation process.


You can learn more about the installation process in the documentation.