This repository has been archived by the owner on Aug 31, 2018. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 160
Enforcement
Rob edited this page Apr 17, 2015
·
4 revisions
Enforcement is currently a work-in-progress. In a previous version of FIDO enforcement was implemented and worked great. However, I had to rip it out because it was completely proprietary to Netflix. Trying to do enforcement strictly through code is near impossible. What is needed for an open source version of FIDO to have enforcement is a UI where logic trees can be built based of visualizations created through a UI. This is currently being planned and will welcome any contributions.
Enforcement mechanisms we are currently working on, or had implemented include:
- disable account
- reset password
- kill NIC
- revoke MAC address on DHCP servers
- automatic re-image
- kill VPN connection
- sending a remediation package
- zero trust integration
- kill network port
- PXE boot scanning
On to the next step... Notification and Storage.