outline-apps icon indicating copy to clipboard operation
outline-apps copied to clipboard
verified publisher icon Jigsaw-Code

client single-sign on + 2fa

Open taylorchu opened this issue 7 years ago • 4 comments

This is helpful to distribute keys, and verify client's identity whenever the key is used.

Sometimes, we don't simply trust the person who "has" the key, this additional step should secure the organization network from leaked keys.

taylorchu avatar Apr 09 '18 22:04 taylorchu

What existing account system integration would be useful to you? Are you asking for 2FA support beyond what's already provided through SSO with a 2FA-enabled account system? What security violations are you concerned about, in the event of a leaked access key?

bemasc avatar Apr 10 '18 17:04 bemasc

We use google login, which has built-in 2FA. I think that is a good start for us.

Here is a use case for this: besides getting access to public net, outline could also be used to give access to private net. It will be nice to configure to forward packets with outline for only certain subnets (to save money on ingress traffic). It is obvious that we need to ensure no unauthorized access to internal services.

taylorchu avatar Apr 10 '18 18:04 taylorchu

OK, thank you for helping us understand your use case.

bemasc avatar Apr 10 '18 18:04 bemasc