「アイデンティティ管理」の版間の差分
ナビゲーションに移動
検索に移動
Kusanaginoturugi (トーク | 投稿記録) (wikipediaリンクを修正) |
Kusanaginoturugi (トーク | 投稿記録) (→Software: リンクを修正) |
||
| 15行目: | 15行目: | ||
* kanidm, some [https://fy.blackhats.net.au/blog/html/2019/09/18/announcing_kanidm_a_new_idm_project.html info here]. Successor of LDAP, Kerberos. Server side of WebAuthn. |
* kanidm, some [https://fy.blackhats.net.au/blog/html/2019/09/18/announcing_kanidm_a_new_idm_project.html info here]. Successor of LDAP, Kerberos. Server side of WebAuthn. |
||
* [[Kerberos]], with [[Active Directory integration]], [[FreeIPA]], some info [https://fy.blackhats.net.au/blog/html/2017/05/23/kerberos_why_the_world_moved_on.html from a SuSE dev here] |
* [[Kerberos]], with [[Active Directory integration]], [[FreeIPA]], some info [https://fy.blackhats.net.au/blog/html/2017/05/23/kerberos_why_the_world_moved_on.html from a SuSE dev here] |
||
| − | * [[LDAP |
+ | * [[LDAP 認証]], passwords in a central server. |
* [[PAM]], linux pluggable authenticaiton modules. Kerberos, LDAP, kanidm, etc. can be plugged into linux. |
* [[PAM]], linux pluggable authenticaiton modules. Kerberos, LDAP, kanidm, etc. can be plugged into linux. |
||
| − | * [[ |
+ | * [[セキュリティ]]. |
* [[Universal 2nd Factor]], replaced by WebAuthn. |
* [[Universal 2nd Factor]], replaced by WebAuthn. |
||
| − | * [[ |
+ | * [[ユーザーとグループ]]. can be stored on a system or centrally via LDAP, kanidm. |
* WebAuthn, browser web authentication API, replacement for password authentication, uses Yubikey, or the built-in hardware of a device like TouchID or Windows Hello. Backwards compatible with universal 2nd Factor, server side provided by kanidm e.g. |
* WebAuthn, browser web authentication API, replacement for password authentication, uses Yubikey, or the built-in hardware of a device like TouchID or Windows Hello. Backwards compatible with universal 2nd Factor, server side provided by kanidm e.g. |
||
2021年5月15日 (土) 10:13時点における版
関連記事
アイデンティティ管理 (IDM), sometimes also identity and access management (IAM), deals with how users gain a digital identity, the roles, and sometimes the permission granted to this identity.
Software
There is a number of software which helps doing identity management. Amongst, in alphabetical order, tools and related:
- Google Authenticator, two-step auth, using one time passwords.
- Initiative for Open Authentication, standardization on how to get an access token for a web API call. Includes passwords, but will in future use WebAuthn.
- kanidm, some info here. Successor of LDAP, Kerberos. Server side of WebAuthn.
- Kerberos, with Active Directory integration, FreeIPA, some info from a SuSE dev here
- LDAP 認証, passwords in a central server.
- PAM, linux pluggable authenticaiton modules. Kerberos, LDAP, kanidm, etc. can be plugged into linux.
- セキュリティ.
- Universal 2nd Factor, replaced by WebAuthn.
- ユーザーとグループ. can be stored on a system or centrally via LDAP, kanidm.
- WebAuthn, browser web authentication API, replacement for password authentication, uses Yubikey, or the built-in hardware of a device like TouchID or Windows Hello. Backwards compatible with universal 2nd Factor, server side provided by kanidm e.g.