boundary icon indicating copy to clipboard operation
boundary copied to clipboard

Published 20 hours ago verified publisher icon hashicorp

Device Posture-Based Access

Open SamuZad opened this issue 1 year ago • 1 comments
trafficstars

Is your feature request related to a problem? Please describe. There are a number of Zero Trust solutions (for instance, zscaler) that can ensure some degree of device security posture before allowing a connection. We were trying to create similar behaviour (deny access outright if the device does not have SentinelOne running), but seem unable to do so

Describe the solution you'd like A way to prevent users from connecting to if a certain process (or processes) are not running on the machine of the user

Describe alternatives you've considered We have looked into creating a plugin, but it does not look like boundary supports external plugins yet, based on https://github.com/hashicorp/boundary/issues/2454. Or if it does, we couldn't find documentation for it anywhere

Explain any additional use-cases It would be a pretty good feature for general adoption to ensure that a user is "secure enough" before allowing a connection

SamuZad avatar Oct 07 '24 17:10 SamuZad

Hi @SamuZad thank you for logging this feature request. I'll leave this item open to solicit additional feedback and 👍 to gauge interest from the community.

anando-chatterjee avatar Oct 10 '24 00:10 anando-chatterjee