{"id":17190,"date":"2019-12-18T16:47:14","date_gmt":"2019-12-18T15:47:14","guid":{"rendered":"https:\/\/www.sms77.io\/?p=17190"},"modified":"2023-02-16T13:34:13","modified_gmt":"2023-02-16T12:34:13","slug":"nextcloud-integration-use-sms77-for-2fa","status":"publish","type":"post","link":"https:\/\/www.seven.io\/en\/blog\/nextcloud-integration-use-sms77-for-2fa\/","title":{"rendered":"Nextcloud integration: use seven for 2FA"},"content":{"rendered":"

Nextcloud is a cloud service that has set itself an ambitious goal: To be better than Dropbox, Google Drive, Office 365 and everyone else. Like the competition, Nextcloud is used for data exchange and storage in the office context. Security is therefore very important. Login data should be secured with additional steps.<\/strong><\/p>\n

Why two-factor authentication makes sense not only for Nextcloud<\/h2>\n

While a good password offers some level of security, today, this is no longer sufficient. It is, on principle, possible to create almost unbreakable passwords.\u00a0However, you should use a unique password for each account your have. Sometimes it’s hard to remember them all. Apart from that, even the best password cannot offer a fool-proof guarantee against unwanted access. Partly, this is due to careless handling – whether on the part of the user or by the service. But in part, this is also due to the increasingly sophisticated methods used by hackers to gain access to accounts.<\/p>\n

This is where multi-factor authentication<\/a> comes in. By adding one or more steps on top of the username+password combination, the likelihood of unauthorized access can be reduced significantly. The methods for this are numerous. From movies we know voice recognition and iris scanning. These take place in real-world applications as well. We know fingerprints for identification purposes from smartphones and laptops. And the TAN used for online banking has today turned into widely used one-time passwords. These are often time-limited and can be linked to a specific physical device as well. In that way, the level of security is increased even further.<\/p>\n<\/div><\/div><\/div><\/div><\/div><\/div><\/div><\/section>

Nextcloud 2FA – now including seven<\/h2>\n

SMS are suitable for delivering such one-time passwords because they offer very short transmission times. Other options are more secure, to be sure. However, SMS offers a compromise, including speed and availability: almost anyone can be reached via SMS. For Nextcloud, there is a two-factor gateway available as a plugin<\/a>, among other options. Alternatively, you can find the plugin in the Nextcloud app store<\/a> as well.\u00a0In the plugin, you can choose between different providers and services – such as Telegram, or seven.<\/p>\n

How to configure the two-factor plugin for Nextcloud<\/h2>\n

After you have downloaded and installed the plugin, you will of course need an account with us to access your API key and top up your balance. Afterwards, follow the instructions for the plugin to configure seven as your provider. To do this you need to specify the API key. You can find this in your account under Developer<\/strong>\u00a0in the API Key<\/strong><\/a> section by clicking on the blue pencil icon next to the corresponding access.\u00a0To be able to send SMS, you should also top up your account balance<\/strong> under Finances<\/strong>. In order to avoid the risk that a code cannot be sent due to insufficient balance, we recommend that you set up an automatic recharge<\/strong>. You can find this under Finances<\/strong> as well.<\/p>\n<\/div><\/div>

<\/div>

Pros and Cons of SMS for 2FA<\/h2>\n

As a rule, SMS are suitable for two-factor authentication. However, there are also some concerns that we should not leave unmentioned.<\/p>\n<\/div><\/div><\/div><\/div><\/div><\/div><\/div><\/section>

Pro<\/h4>\n<\/div><\/div>
  • <\/i><\/div>

    Fast<\/h3>

    Network availability assumed, SMS are delivered worldwide within seconds.<\/p>\n<\/div><\/div>

    <\/div><\/li>
  • <\/i><\/div>

    Available anywhere<\/h3>

    Most people worldwide can receive SMS – regardless of the availability of mobile Internet.<\/p>\n<\/div><\/div>

    <\/div><\/li>
  • <\/i><\/div>

    No Apps needed<\/h3>

    In contrast to many other 2FA methods, SMS does not require any additional apps and works on older devices as well.<\/p>\n<\/div><\/div>

    <\/div><\/li><\/ul><\/div><\/div><\/div><\/div>

    Contra<\/h4>\n<\/div><\/div>
    • <\/i><\/div>

      Insecure<\/h3>

      SMS are not encrypted and can be hijacked comparatively easily.<\/p>\n<\/div><\/div>

      <\/div><\/li>
    • <\/i><\/div>

      Cost<\/h3>

      Our service is reasonably priced, but not free of charge. There are other methods that are not only safer, but also cheaper.<\/p>\n<\/div><\/div>

      <\/div><\/li>
    • <\/i><\/div>

      Dead spots<\/h3>

      If the recipient has poor reception or no reception at all, time-limited codes may arrive late or not at all.<\/p>\n<\/div><\/div>

      <\/div><\/li><\/ul><\/div><\/div><\/div><\/div><\/div><\/div><\/section>

      While the use of SMS for two-factor authentication is basically possible, it should be checked on a case-by-case basis whether this makes sense. In particular, the issue of security must not be ignored here. SMS should only be used if there are good reasons against other, safer methods.<\/p>\n<\/div><\/div>

      <\/div>

      Conclusion<\/h2>\n

      Nextcloud is a widely used cloud service. The company combines the simple and intuitive operation of consumer-friendly services with the functionality and performance of business solutions. In order to better protect your data from tampering and unauthorized access, two-factor authentication is a sensible and important step. By using the two-factor-gateway, you can now use the reliable and inexpensive service of seven for this as well.<\/p>\n<\/div><\/div><\/div><\/div><\/div><\/div><\/div><\/section>

      Best regards<\/span><\/h6><\/div><\/div>
      \"Your<\/div><\/div><\/div><\/div><\/div><\/div><\/div><\/section>

      Header picture by PhonlamaiPhoto via iStock.com, edited.<\/em><\/p>\n<\/div><\/div><\/div><\/div><\/div><\/div><\/div><\/section>\n","protected":false},"excerpt":{"rendered":"Nextcloud is a cloud service that has set itself an ambitious goal: To be better than Dropbox, Google Drive, Office 365 and everyone else. Like the competition, Nextcloud is used for data exchange and storage in the office context. Security is therefore very important. Login data should be secured with additional steps. Why two-factor authentication...","protected":false},"author":1,"featured_media":17207,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"content-type":"","footnotes":""},"categories":[424],"tags":[419,461,462,418,463],"class_list":["post-17190","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cooperations-integrations","tag-2fa-en","tag-cloud-en","tag-nextcloud-en","tag-security","tag-sicherheit-en"],"_links":{"self":[{"href":"https:\/\/www.seven.io\/en\/wp-json\/wp\/v2\/posts\/17190","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.seven.io\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.seven.io\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.seven.io\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.seven.io\/en\/wp-json\/wp\/v2\/comments?post=17190"}],"version-history":[{"count":17,"href":"https:\/\/www.seven.io\/en\/wp-json\/wp\/v2\/posts\/17190\/revisions"}],"predecessor-version":[{"id":88224,"href":"https:\/\/www.seven.io\/en\/wp-json\/wp\/v2\/posts\/17190\/revisions\/88224"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.seven.io\/en\/wp-json\/wp\/v2\/media\/17207"}],"wp:attachment":[{"href":"https:\/\/www.seven.io\/en\/wp-json\/wp\/v2\/media?parent=17190"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.seven.io\/en\/wp-json\/wp\/v2\/categories?post=17190"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.seven.io\/en\/wp-json\/wp\/v2\/tags?post=17190"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}