Utilising 'whois' to authenticate users

matt · July 12, 2021, 12:27pm

Hey! We’re really loving Tailscale so far!

I’ve noticed the recent introduction of the ‘Whois’ in the Tailscale API. At the moment, we have two authentication steps (two the network and two applications within) and I’d love to see that dropped to one with a second-factor authentication for the application access.

My thought is to set up or IAP to perform a whois on application access to authenticate users. Is this too far tangential from this feature’s intended use? I also appreciate that this may be completely against the ‘zero-trust’ ideology.

Matt

DGentry · July 13, 2021, 1:51am

You’re referring to tailscale/tsnet at main · tailscale/tailscale · GitHub ?

That pretty much is the intended use, sure. It is early days for that library and subject to change, but experimenting and trying out services is what it is for.

Topic		Replies	Views
HTTPS Tailscale Authentication?	4	706	March 21, 2023
Nginx Tailscale Auth Linux	0	452	May 13, 2023
Tailscale for authentication	4	862	February 28, 2023
Fast User Switcher	8	1001	December 7, 2022
Potential security problem due to the use of a non-linked authentication Service(?)	7	779	January 21, 2021

Utilising 'whois' to authenticate users

Related Topics