fdo-rs / fido-device-onboard-rs

An implementation of the FIDO Device Onboard (FDO) spec written in Rust.
BSD 3-Clause "New" or "Revised" License
62 stars 34 forks source link

Support a windows client #545

Open nullr0ute opened 1 year ago

nullr0ute commented 1 year ago

The FDO protocol isn't a Linux specific protocol and there has been some level of interest in being able to use FDO to onboard Windows clients.

One usecase here would be to onboard a Window client, be able to use the generic user FSIM to create a user and use the management API FSIM to register the client to a management platform that can manage Windows clients.

maxamillion commented 1 year ago

I could see this being useful for an AAP use case as well, have the client enable WinRM and then the FSIM add the device to the AAP inventory facilitating for automatic onboarding into AAP and being ready to run automation against he host. Could even hit the provisioner callback endpoint from the host to initialize an automation job to run against itself from the AAP Control plane.