Utilising 'whois' to authenticate users

matt · July 12, 2021, 12:27pm

Hey! We’re really loving Tailscale so far!

I’ve noticed the recent introduction of the ‘Whois’ in the Tailscale API. At the moment, we have two authentication steps (two the network and two applications within) and I’d love to see that dropped to one with a second-factor authentication for the application access.

My thought is to set up or IAP to perform a whois on application access to authenticate users. Is this too far tangential from this feature’s intended use? I also appreciate that this may be completely against the ‘zero-trust’ ideology.

Matt

DGentry · July 13, 2021, 1:51am

You’re referring to tailscale/tsnet at main · tailscale/tailscale · GitHub ?

That pretty much is the intended use, sure. It is early days for that library and subject to change, but experimenting and trying out services is what it is for.

Topic		Replies	Views
User Identification	6	2943	September 10, 2021
HTTPS Tailscale Authentication?	4	1018	March 21, 2023
Using `localapi` Tailscale About articles (troubleshooting, info)	4	2197	December 17, 2022
Nginx Tailscale Auth Linux	0	626	May 13, 2023
How does https://hello.ipn.dev/ work?	5	1424	February 16, 2021

Utilising 'whois' to authenticate users

Related topics