Hi @giacomo
I am currently testing Passbolt and am very impressed. In my opinion, it is a completely secure solution for managing passwords for individual users or teams. And definitely another reason to use Nethserver in both business and private environments.
Thank you for the work…
We are going to make sure Nethserver is the Defector platform for Managing infrastructure for businesses and developers.
We now Have most CRM, ERP systems, Documentation and Collaborative tools, We are finalising on the last bits fo Infrastructure management, then begin focusing on the Security Tools, and markzu has been heavy on VPN tools as well.
SO with NS clusters, you should be able to run your entire corporate entity at whatever level, in whatever capacity, across departments, with minimal Efforts.
Hi,
I’m using https://psono.com/ for several years and haven’t tried Passbolt.
Are you already running on NS8?
Thanks,
Can you discuss perceived pros/cons vs. Bitwarden vs. Vaultwarden?
IMO, and in a general sense, I’d favor having one solid solution for the various software categories of interest, and waiting to put out a second, or third, or whatever, until the desired software categories are covered. So one solid password manager, one solid SSO solution, one solid blog/CMS, etc., until the categories are filled out, and then work on some variety.
But since I’m not developing NS8 add-ons, that opinion probably doesn’t count for much. Just a thought.
Yes, it works on one of my three NS8 without any problems.
Integration of the account provider would be desirable.
100% agreement.
In my opinion, there are no major differences between Bitwarden/Vaultwarden and Passbolt. And if there are, they are hidden under the hood. Importing passwords from Vaultwarden to Passbolt as .csv files works without any problems. I have been working with KeepassXC so far. And I had to set it up for each user. Very tedious and time-consuming. Passbolt has apps for iPhone, Android and Windows.
It’s a fully functional software package, just as you would want it to be.
what are those your Options @danb35
I mentioned a few of them in my post, and I’m sure others could add to the list. I’d add the web server, and I’m sure others will come to mind. The point of the question, I expect, is whether we’re already at the point where all the basic categories are covered. But even if there’s something in all those basic categories (a question on which I take no position in the general sense, though for my current needs there is), is it really a solid solution?
Let’s look at SSO. In that category, you have Authentik and Zitadel, and someone else (Markus?) has released LLNG. There’s also 2Fauth, which seems at least somewhat releated. But are any of them really ready for prime time? I’m using Authentik, but it’s out-of-date (it uses 2025.2.0; current is 2025.6.4) and takes a good bit of manual configuration to integrate with NS8’s user directory. Can that be solved? Is it possible to automate that configuration at install-time? If not, is there a different solution for which it is possible? I know it’s possible for LLNG, because I did it, but the UX (for both admins and users) of Authentik is vastly superior (I’ve only barely touched Zitadel). I don’t deny there’s value in having choices, but if that means three apps that integrate poorly and aren’t kept up-to-date rather than one that integrates well and is up-to-date, I’d favor the latter.
And again, I’m one who isn’t developing anything, and you are, so I’m hardly in a position to be making any kind of demands. But I do think the platform would benefit from fewer, but more complete/solid, software choices.
Authentik was Updated i needed, help with Testing Update on a new non prod instance, before we can release it. been testing alot more apps recently.
Zitadel, in a recent Updated, added the ability to automate, havent worke dit out yet.
LLNG always uses config files, so integrations was seemingly easy.
MAybe Best Case is to do, LLNG, and Bridge with SAML to Authentik or Zitadel, and manage everything from authentik, so long as everything is already mapped using SAML,
I also have a Vast Need for Deepe rintegrations.
2Fauth is like Authy for OTP codes, not Authentication per se.
Passbolt is a nice password vault. I’m working on an upgrade.
Unfortunately LDAP isn’t available in the free version, see GitHub
We are using passbolt internally for few months right now.
The applications works good but it can work without the browser extension, this could be a showstopper for someone.
By the way, as Markus already mentioned, we are working to make it available from the Forge.
Wiki entry.