Univention 5.2 & NextCloud

With UCS 5.2 something like two years in the making, I was expecting day 1 integration of NextCloud: that was the main reason I ever got started on Univention!

Instead what I do see is this message:

“Further release updates are available but cannot be installed. The currently installed version of the application Nextcloud Hub is not available for all newer UCS releases. You may wait for the app to be released for the new UCS version. Using the App Center, you may also search for alternative apps or uninstall the application.”

The wording of this message is quite ominous and hints at grave political issues, a parting of ways of which there are far too many in the European open source software community.

Actually, I was expecting more integration, e.g. a partnering of Proxmox with Univention and NextCloud for a fully integrated turnkey solution which encompasses a full stack from a hyperconverged infrastructure at the base, reaching right into a single management pane groupware solution.

You do know who the real enemy is, right? And that lack of collaboration is likely to kill any of your own value propositions…

My perception is that there was a rather noticeable push for integration with Univention 4, that it was replaced with something more akin to indifference on UCS 5 and that currently it’s divorce lawyers talking, while no alternative is ready (and Nextcloud really is rather great and does everything I need).

So please let us know what the state of NextCloud and UniVention integration is going to be and if it’s something that might eventually happen of the other side invests the work.

Ok, after listening to the first few sesssions of the Univention 2025 Summit, the politicial angle seems to be very well understood.

But that mostly makes it more difficult to understand why the NextCloud hub is missing for 5.2 after such a long beta: when is it expected to be ready?

And what about Proxmox?

Hi,

the text you cited from the UCS App Center is a standard text which is shown for any App which is installed but not available for the UCS version you want to upgrade too – regardless if the App Vendor is Univention or not. In case of Nextcloud the Vendor is Nextcloud, in case of for example the UCS@school Apps (which are also not yet available for UCS 5.2) it is Univention – the text is the same. There is no political issue, it is just limited resources.

Nextcloud is working on providing the Nextcloud Hub App for UCS 5.2, the current status can be found here: Keycloak compatibility needed for UCS 5.2 · Issue #204 · nextcloud/univention-app · GitHub

For Proxmox: UCS runs perfectly fine on a Proxmox Hypervisor. Not sure what kind of integration or partnership you would like to see?

Best
Ingo

Hi Ingo,

on one hand that’s great to see. On the other hand those issues were opened a week ago, when the keycloak transition was announced perhaps as long as two years ago?

This doesn’t sound like the strategic partnership I’d expect it to be and it’s similar with Proxmox.

Of course my vision is somewhat limited, too, but the Broadcom takeover of VMware combined with Redhat basically abandoning oVirt/RHV has left Proxmox as one of the very few providers for open source HCI, with XCP-ng being the only another holdout that comes to mind (I don’t count TrueNAS for reasons too long to explain here).

There is a lot of people out there in search of a new home and plenty of those have users to manage, from a handful to thousands, and you know the potential cost of making one small configuration mistake there: making it work isn’t the same as making it safe to use.

Of course, one could argue that HCI is very much yesteryear in terms of major corporate IT, but that’s why it’s a natural fall-back solution during crisis or disaster, because you can bootstrap it on little more than three oddball PCs.

It’s also a nice starting point for family self hosting, but while UCS will run just fine on Proxmox, they aren’t talking to each other. In fact finally both are using the same release of Debian just now, but the only domain join script around is still for Ubuntu, Fedora/CentOS/RedHat don’t seem to exist for Univention.

I’ve run Univention to manage ids on CentOS7/oVirt lab machines for a few years. and the total lack of direct support has always astonished me, while my hack were just fine for a totally isolated research lab infrastructure.

But the only easy way to get Univention to run with a Debian system seems to start with a Univention ISO… which was stuck in Debian 11 and thus far outside what Proxmox would still support.

Now at last running a three-node Proxmox/Ceph/Univention/NextCloud cluster perhaps even with a pfSense firewall thrown into the mix with pass-through NICs seemed within reach, because Proxmox will install on a Debian they didn’t distribute themselves (it even runs on ARM, including RPs).

But that’s only at the complete loss of NextCloud and judging from how quickly they are starting to work on that now, Proxmox might haved moved on to Trixie before it’s ready.

What I would like to see?

My “vision” has always been some small corner or room with Internet, a LAN or Wifi with power, where you put three NUCs, wire an East-West cluster between them via Thunderbolt and then add USB NICs to run the firewall while all internal Northward traffic goes via the onboard NICs.

All of this running NextCloud with Talk, mail and the typical file sharing for a bunch of laptop (or desktop) clients with your usual mix of Windows/Apple/Linux clients and a single pane of glass with the local fault tolerance afforded by HCI.

Works for a family whose kids and wives become were unhappy when there is a glitch in the home IT while daddy is gone on a business trip for a week, but these days military and disaster resilience applications of that very same template have high relevance.

You then add a single remote host (e.g. for disaster recovery) as a kid moves out and also wants a local proxy for latency, which can grow again into another cluster when that becomes valuable enough to warrant such organic expansion, which essentially resembles your typical game of life. Again, that same template holds true in a disaster recovery scenario, where clouds are “scattered” or “intermittently showered [on]”.

What I don’t want to see there is what the clouds are offering, so no M&A of companies or software. But between that and the current near total isolation lies a wide field of strategic cooperation which actually results in interoperability.

I can see that mental attitude forming in the videos from the last Univention summing (and the first set I ever looked at, sorry…), but not as an out-of-the-box product experience, expecially one that has been in beta for such a long time, that it’s base (Debian 12) is ending security support next year.

AFAIK I couldn’t have run UCS 5.0 with PCI-DSS conformance since August 2024 and running your installed base beyond EOL for security patches basically by design would kill UCS on every corporate security review board that I know.

Are you guys talking to Proxmox? I know Bremen is a long way from Vienna and there might be actual issues of mutual language comprehension, but given their rather unique current position as almost a unicorn HCI holdout, there should be some mutual recognition and touching bases.

I know that unfortunately this elementary HCI isn’t a revenue product, which is why I’d rather see that sponsored via some type of open software GEMA levied on the hyperscalers, or even consumers: still better value than some spending billions on soccer… but in the meantime, I’d just love to know you’ve had a chat.

Given your penchant for synchronized updates on all UCS instances: what’s the story on upgrading e.g. your domain controllers to 5.2 but leaving NextCloud running on 5.0 until such day as it might eventually arrive for 5.2?

Should you generally leave all of your servers at 5.0 until your entire App Store base has a matching release?

How well is that supported or tested?

Hi,

thanks for your comprehensive answer!

If I understand you correctly, in your vision you would like to install Proxmox and UCS on the same Debian based physical machine. This is indeed not supported by UCS (and I assume even not by Proxmox), and even if it would be supported I wouldn’t recommend it. Splitting Infrastructure (like Hypervisors) from Applications (like UCS and Nextcloud) is best practice for a good reason - you can more easy exchange one or the other (for example exchange the Hypervisor like now intended by many who use VMware).

That said, I don’t know about any issues running UCS 5.0 (or even older) on an up to date Proxmox Hypervisor (there are many UCS users out there doing it). I also haven’t found any hint that Proxmox doesn’t support to run Debian 11 in a virtual machine.

Please keep in mind that Univention does full maintenance for UCS. So even if the underlying Debian release is out of maintenance by Debian upstream, Univention still provides Maintenance including Security Maintenance. We are working closely together with other Debian organizations interested in Long Term Support for Debian. So for UCS, please take our maintenance durations as a reference, not those of Debian:
https://docs.software-univention.de/n/en/maintenance/ucs.html#maintenance-ucs

Mixed environments between UCS 5.2 Primary Nodes and UCS 5.0 instances are supported. So you can keep UCS 5.0 for Nextcloud and upgrade other instances - for details please see Release notes for the installation and update of Univention Corporate Server (UCS) 5.2-0 — UCS 5.2-0 Release Notes

I agree that it would have been desirable to have an earlier adoption of the Nextcloud App for UCS to Keycloak, so that it is available directly with the UCS 5.2 release. But I’m confident it won’t take that much time until it is available.

Best
Ingo

One of the most frustrating aspects with companies, especially smaller ones (as if often the case in the open source ecosystem) is that they do not explain the philosophy behind their product. And in some cases, I’m not sure they have a well defined strategy or communicate that clearly if it changes.

For Univention my perception is changes of scope and direction, including contractions. And while expansion in any direction is usually transparent to customers, contractions can be much more difficult to manage by clients and result in critical loss of trust.

Just to highlight, here is my personal perspective:

Univention seems to have started off with little more than the idea, that you can offer big savings and make a quick buck for companies that would otherwise have to buy Windows NT servers by using Samba and invest a bit into making that look better and work more easily.

That’s legitimate and fine, especially when you offer the result back as open source, so please let me assure you that this isn’t my gripe, more how I try to understand the somewhat erratic changes in the philosophy of your company, which I guess could ill afford to [re-]invent itself without the help of venture millions or a M$-style practical monopoly.

Your founders then seem to have looked for growth beyond that initial idea, but what exactly Univention wanted or wants to be, has actually become less and less clear for the 10 years or so that I’ve been observing you.

I noticed signs of significant functional expansion around UCS 4 with what seemed like a a strategic move towards becoming a provider of IAM integrated turnkey solutions that pointed [application stack] upwards, towards groupware applications like Open/NextCloud, but you were also offering [application stack] downwards instrumentation around IAM integrated VMs and containers, which to me looked a lot like HCI or at least hypervisor management, perhaps even orchestration: not quite a Nutanix or vShere drop-in replacement yet (nor Parallels/OpenVZ), but perhaps at least at the Proxmox level of management integration.

That integration is huge value, especially when unlike M$ it comes without having to sell your kidneys, so that’s how I came to invest my time on your product and tried evaluate if it could become a product for my employer, then a company with 100k employees and a way bigger IT customer base. Its CEO even came to be an EU commisioner until recently and while I was able to impress my hyperscaler gripes on him before he left for the EC, he (and we) still lost to the clouds on all fronts…

…and Unvention never left my small lab (originally mostly based on CentOS7/oVirt, also OpenVZ, now based on Proxmox), because its scope and productivity advantage never really scaled beyond what it included without major integration effort.

The single management pane for the entire stack is part of how clouds killed on-premise and with a giant budget and re-engineering effort even Microsoft escaped with their Office into 365 and Azure with AI to suck the world’s biological brains on every keystroke.

That is a tough place to compete for a small German company, but (what I perceive as) a functional shrink almost back to your AD (or Novell directory services) replacement starting point isn’t going to cut it, even if you now try to focus on deployment scale-out up to to government levels and bet on regulatory protection by them.

Yes, identity management is at the very beginning and core of a full stack, but at least Herr Ganten still remembers Novell’s fate and that directory services alone aren’t enough.

That new modesty may be hard earned realism, but even with Trump poisoning the cloud it seems that Microsoft and Musk lobbying might just get replaced by having their people in direct political power, eliminating the regulatory protection you seem to have chosen to build your future on: the new sovereign may not be the people any more.

And that is why the vision of a full stack ecosystem which starts with a single box and grows organically via “we the people” to the size of federated nations needs to be in your focus, and it needs to work in practice.

It obviously can’t and shouldn’t be a single vendor solution, but it has to have the single vendor look and feel. That only works if everyone goes quite a bit beyond their home turf, but in a good way.

If I understand you correctly, in your vision you would like to install Proxmox and UCS on the same Debian based physical machine. This is indeed not supported by UCS (and I assume even not by Proxmox), and even if it would be supported I wouldn’t recommend it. Splitting Infrastructure (like Hypervisors) from Applications (like UCS and Nextcloud) is best practice for a good reason - you can more easy exchange one or the other (for example exchange the Hypervisor like now intended by many who use VMware).

This paragraph to me shows everything that is wrong with the current Univention approach: of course, you’re technically right, but IMHO you’re wrong, functionally and philosophically.

You are putting yourself into a functional niche, concentrating more on what you don’t do, because it’s another vendor’s job, instead of what what you can help to achieve via what could function as a seamless integration.

And that what gets you into the non-Amazon, Meta, Azure or Alphabet graveyard Martin Andree talks about in his Univention Summit 2025 video.

What I want is what I believe many others want, too, because I consider mayself quite ordinary: the deep-enough stack, fully integrated under a single management pane in a turn-key package. I want simple deployment and easy organic scale. I can start with a single box and add standby and cluster as befits the environment. I want the flexibililty to move from boxes I own and house to clouds scattered across the countryside or even continents. I can also cut and fork, because those are natural processes in families and even with EU nations.

Whether I deploy on physical boxes from e.g. a USB stick with a Proxmox or Unvention boot medium, should be following a shared set of use-case based (tested) recommendations from both. And once those boxes are bootstrapped, adding UCS for the management of those boxes and the applications on top should be just as easy as adding a seed VM/container/app and having it go to work with a few quick steps, again with both sides recommending a simple procedure to achieve the integration.

Currently both sides leave all the integration effort to the end-user or potentially some 3rd party. Yes, supporting all types of flexibility there is a hard need, but no, you shouldn’t be left with a stack of manuals on your own by default. And most importantly, unless you can rest assured that a rich and complex product, which will require quite an investment to learn and appreciate at the application level, will continue to work and operate with the underlying stack staying abreast of security threats, but also evolving with fundamental changes in the state of the art, customers just won’t cross the threshold and commit potentially man years of effort into that eco-system they see as an integrated stack.

The value isn’t created by the infrastructure, nor by the identitiy mangement, but at the application level. Unfortunately deficits at those lower levels, don’t just destroy application value, their negative impact can be much bigger as the Mirage botnet demonstrated.

Leute, ihr müßt eure Ambitionen deutlich höher ansetzen.

Grundsätzlich ist jedes bißchen Zeit, was ihr darauf verschwendet, den Leuten zu erklären, daß sie wegen falscher Abstraktionen zu fehlerhaften Aufbauten neigen, teuer verschwendet. Statt dessen solltest ihr eure Energie darauf verwenden, die Integration mit komplementären Partnern zu vereinfachen: Proxmox ist global gesehen doch nun wirklich um die Ecke und seit Jahren scheint ihr mehr darauf bedacht, euch nicht auf die Füße zu treten, als einander besser zu integrieren.

Bin ich wirklich der einzige, der mal eben aus ein paar NUCs oder Laptops einen voll integrierten NextCloud/UCS-school/org Server[-Cluster] mit so viel Redundanz und Skalierung haben will, wie ich extra Maschinen dazustellen möchte?

Die aktuelle politische Situation könnte eigentlich kaum besser für euch sein. Wie gefährlich die Verlockungen der Wolke für jede Form von Souveränität ist, war nie deutlicher. Und wenn ihr diese Gelegenheit nicht für eine philosophische Neuausrichtung nutzt, dann werdet ihr sehr bald auf dem von Herrn Andree so anschaulich beschriebenen Friedhof landen.

Und weil das Thema KI euch so am Herzen liegt, will ich dazu noch ein paar Takte sagen, die ich mal aus dem Hype um IoT heraus entwickelt habe:

Niemand will intelligente Assistenten, nicht einmal biologische umsonst, statt künstlicher gegen teuer Geld, wenn diese nicht garantiert loyal und langfristig verfügbar sind. Kaum jemand wird eine Putzfrau engagieren, wenn er sie nur zwei Stunden bekommt und garantiert jedes mal eine andere ist: Bis man der den Job erklärt hat, ist man heiser und die Dame wieder weg.

Ein Butler wie Carson in Downton Abbey erfordert nicht nur eine grandiose Ausbildung, sondern wird vor allem dadurch wertvoll, daß beide Seiten zu gleichen Teilen in den Aufbau einer gemeinsamen Wissensbasis oder gar Kultur investieren und er eine Familie über ein ganzes Leben begleitet. Außerdem darf er natürlich nicht jeden Schritt an seinen Ausbilder zu berichten oder gar Anweisungen von dort entgegennehmen. Und er übernimmt das Haus, egal wie groß oder klein, skaliert die anderen Dienstboten transparent über Delegation, koordiniert mit den Butlern anderer Familien bis zu dem Punkt, wo eben Andeutungen reichen, um physisch große Dinge zu bewegen.

Hier steht den Internetgiganten bei der echten Wertschöpfung ihr Geschäftsmodell entgegen, selbst die Generation-Z wird irgendwann überlegen, ob sie wirklich die Wiegen ihrer Säuglinge von Tesla-Robotern schaukeln lassen wollen: convenience isn’t everything.

Aber bis die diese Hürde überwunden haben, muß der wirklich souveräne Stack, der bei Handy in der Hosentasche anfängt und dann organisch mit den sozialen Banden von der Familie bis zum Staat skaliert, auch technisch funktionieren: Da seid ihr gefordert.

Ihr habt meine E-Mail über das Forum, wenn ihr reden wollt, tretet in Kontakt.

Hi @abufrejoval

I’ve read your posts and although I agree with some of what you said, I definitely can’t agree with it all.

The separation of Proxmox, UCS and something like nextcloud is vital, really. We are happily running Proxmox VE, UCS VM and nextcloud LXC on an average spec Dell PowerEdge. Not only this allows us to tamper with the systems almost risk-free but enables us to add other things in the mix or ‘experiment’ with the bleeding edge software versions. Add Proxmox PBS connected to the network and this feels a rock solid system.

In an attempt to reduce cost and limitations of running Windows Server on our system, we tried another Linux base directory server. After a few months, it turned out to be a declining and almost dead avenue. Thanks to the proxmox’s ‘independence’ we moved to UCS and easily adapted the rest of the infrastructure.
If Proxmox had incorporated that dieing Linux directory, quite a few people would be in trouble. This would potentially kill the entire product.

One thing I definitely agree with is that UCS 5.2 could have been released earlier. Some of us, even those with paid licences and covered by Up to 7 years maintenance for major releases, might have a problem explaining why we have not migrated from Debian 10 since June 2024. On the other hand, I’m glad the development of UCS is at a steady pace and doesn’t turn into Nextcloud-like sprint. @Univention All I can say, be a bit faster but don’t try to run.

abufrejoval, I wonder if maybe you are slightly missing the point. If you want to run small system on a fragmented, weak hardware, maybe you should look at something like K8s. Forget hypervisors and the VM route, use workloads and namespaces with Nubus and Nextcloud.

Edit: This paragraph which I forgot about

I would like to know what was the motivation for a large fragment of the text written in German. It makes it so intriguing, that even if someone doesn’t read German they will translate it to see what you had to say. And it seems you haven’t used any secret code either?

@abufrejoval I really appreciate that you share your thoughts here!

Much of what I would have written has already been said by @dzidek23, but I’d like to put it in different words: There is no “one size fits all” solution.

In a small shop or a family, administrators and users are the same persons and want to have a “one click administration”. The larger an organization gets or the more security is needed, the more modules or layers (technical layers and team responsibilities) you get which must be separated: to increase redundancy and scalability, to reduce security risks if one module get’s compromised, to ease upgrade processes and downtimes of modules and so on - and there must not be such thing as “one click updates it all”.

That’s the reason for the different solutions out there. A project like “YunoHost” might serve the needs of a family or small shop with limited time or knowledge for IT better than UCS, which is perfectly fine.

Perhaps a talk would be better than to continue the discussion here, if you’re interested at all.

But let me assure you that I am two different beasts, a private user and the technical director of hardware architecture research in a company that isn’t small. And I am looking for solutions that fit from one end to the other with the ability to merge and split into bigger and smaller pieces, with varying levels of resilience and compliance: these days politics can decide how you need manage your IT infrastructure, sometimes you even need to bring clouds back to the ground.

But I’d like to point you towards your current headline, right at the top of your web-site:

Mit unseren Open-Source-Lösungen für integriertes Identitäts- und Zugriffsmanagement haben Sie die Kontrolle. Egal, wo Sie sind oder welches Gerät Sie nutzen – unsere skalierbaren und hochverfügbaren Lösungen sorgen für eine nahtlose und sichere Nutzung ganz unterschiedlicher Softwareanwendungen.

I read that as UCS is aiming at the maximum horizontal TAM but it obviously needs some vertical integration, because IAM as a stand-alone doesn’t fly.

NextCloud is one step up, Proxmox is one step down, both definitively need IAM and not providing help for that first step creates hurdles instead of reducing them. I’m pretty sure you don’t get that from M$, Alphabet or AWS.

And please remember that your original business was all around the ease of integration around Windows clients: why should it be so much harder for Linux?

Please note that I am not arguing against a properly layered architecture or the ability to swap out layers with components from different vendors: that would be truly crazy. SOA means functional, operational and security decomposition, but if you pay every service transition in blood, it’s dead on arrival: the outside look and feel must still be so integrated you’d think it’s monolithic.

And when you want heterogeneous horizontal scale, you need to still offer turn-key solutions for common and normal combinations.

Especially the ones you have in your app store.

IMHO the current 5.2 state after almost two years of beta demonstrates a serious deficit in eco-system management; sorry to be so harsh.

Proxmox: if you don’t want to take the two steps required to give people a simple on-click integrated solution (or a Debian join script that works with them), again IMHO you’re showing an attitude that is likely to put you into that graveyard.

Then again that holds true for both of you, I don’t see Promox jumping for you guys, either, which to me is just as hard to understand. The two of you in combination could really cover tons of ground, especially (not exclusively!) in the EU. As with NextCloud I see you as natural partners from a client perspective, but of course you fight for the same client budget… hopefully not to your deaths via those internet giants.

Divide at impera is self inflicted in a lot of open source, because reaching across can loose you more money than you make. But against that competition you better find a way.

Even if it’s been computers for more than four decades, I’m not thinking binary, I’d say modular or rather LEGO, because that’s how I got started on design.

So the ability to swap out the parts is crucial, especially since Univention wants to be your IAM choice on every device, but that doesn’t mean you can’t have integration prepared (knobs!). For NextCloud and all the other apps in the Univention store, that was a selling point but didn’t result in an exclusive deal between the two. I’d just say it should be the same for the lower layers like Proxmox, especially since they gave up their own VM and container management (I know they still use containers internally, but not as an app).

I quite agree and I’m not advocating a merger, only a minimal bit of turn-key integration at a level similar to what they started with on Windows.

Yes, when you try to explain that to a PCI-DSS auditor, they might listen with sympathy, charge you extra for their patience and then mandate a full set of extra risk management procedures which have Microsoft look cheap.

I’m afraid Univention doesn’t have a lot of experience with compliance outside of their home markets.

Proxmox is by its nature closest to the metal: if you’re slow there, the ship has sailed. UCS is somewhere in the middle, and it’s ok if their IAM machines aren’t at the front line. Not the same for member servers or anything they provide IAM services for.

I built my career of more than four decades on selling solutions that I had tested enough myself to judge their functional and operational opportunities and limitations. That was only possible during the PC era, very difficult with mainframes or clouds.

So I built some mission critical nation scale infrastructures eating my own dogfood while exploring both larger and smaller scales, and while I’ve been into VMs since the 370 (and ordered VMware 1.0 in 1999), I’ve also built on OpenVZ containers rather than VMware (or KVM) hypervisors because it’s just so much better and cheaper. Just as I’ve also built and operated a mix of both nested together (only to find that Google did the same for a decade before telling anyone): I let the use-case drive the architecture, not ideology.

It’s precisely because UCS as a IAM should work so seemlessly well with scale-in and scale-out abstractions, whether they are container or hypervisor based, that I like it.

But that doesn’t keep me from believing that its chances of survival are much bigger when they offer easier integration one step up (e.g. NextCloud) and one step below (Proxmox, vSphere, Xcp-ng, and whoever is left after oVirt/RHV and OpenVZ/Virtuozzo have pretty much died).

Well actually I was looking for a private message facility to Ingo Steuwer or UCS staff, to avoid putting my personal impressions too much into the public space.

But I couldn’t find any, so I chose German for a bit of privacy instead… yeah, only a few clicks of extra effort these days, I know.

But it’s also how I’ve been operating for decades now, a wild mix of four languages in a very international company and rather common in places like Brussels, Basel or Barcelona.

I’m still not sure about your big picture here, but I think we move into the same goal but from different directions.

One of the reasons we removed “our” KVM management UI was, that there was close to no benefit in the market in the integration between IAM and Hypervisor management on the same Linux Distribution. Our customers implemented several UCS Domains: one for operating the Hypervisor (and other base level operation), one for user services (for members of the organization), and sometimes a third for services related to external users. AFAIR that is also required by PCI-DSS. Pushing a Hypervisor as combination with our product in each of these domains would be a mess. Furthermore we can’t “dictate” which Hypervisor to use – currently UCS still runs more often on VMware then on Proxmox.

So what we aim for is to make the “plug” as you describe it easier: provide the needed APIs and simplify the configuration. We have that in place already for Services like Active Directory, MS365, Google G-Suite or Open Xchange as “Connector” Apps in the App Center. We are working on a Nextcloud Integration App, and have a list of more. If it really brings benefit we might have one for Proxmox, but as all the APIs are already there the steps to configure are not that complex (someone write a Howto here OPENID Keycloak Anbindung Proxmox). I think these are the “Lego” connectors you mentioned - I called it “Packaged Integrations” in my Talk on the Univention Summit.

We need to work on the “big picture” in smaller chunks, otherwise we will be overwhelmed by the whole package. We want to help others to build the solutions their end users need, like for example openDesk does for the public sector.

PS: Please be assured that we have customers following security policies like PCI-DSS, that’s one of the reasons why we offer longer maintenance than Debian Upstream.

PPS: Talking about “Egal, wo Sie sind oder welches Gerät Sie nutzen” on the website tries to address end users: end users can authenticate and access services from any device.

PPPS: my direct contact address is no secret, it’s steuwer@univention.de

Sounds good, I’ll link up with you next week.