Wer mag, kann bei den Chemnitzer Linuxtagen was über Single Sign-on für Webanwendungen von mir hören. Ist aber für die, die sonntags morgens nicht verschlafen. 😉
🌟 This is the official Mastodon account for LemonLDAP::NG, a Web Single Sign On free software compatible with many open standards like CAS, SAML and OpenID Connect.
ℹ️ We will publish here information about releases and new features. Please follow us!
ZTNA? Don't get me started. Third party cloud-based IAM is inherently less secure than private network architecture.
You're trusting someone you don't know.
And all of their employees.
And all of their vendors.
And all of their support providers.
Open your eyes and look at all the cloud breaches.
If you want real zero trust, bring your data home. #zerotrust#cybersecurity#cloudarchitecture
@fifonetworks It’s sort of crazy to even think about. Some identity providers, like Okta, pride themselves on the idea that their users, every day, use a “My Apps” dashboard which acts as a springboard for logging into every single application in their organization. This acts a visual representation of every single app that the cloud-based IdP can spoof a security token for, all based on a single, basic, RSA signature.
It gets even worse when you consider that most organizations also use the same provider for the 2nd auth factor. 🤯🤯🤯 #iam#idp#cloud#authentication#oauth#saml#sso
Introducing SAML Mock: a tool I've been building for testing #SAML implementations. Simulate SPs and IdPs effortlessly, and explore various SAML scenarios. Check it out at https://samlmock.dev#SSO
The docs are a bit sparse right now, but planning to correct that soon.