Single Sign On (SSO) - Githubissues

idaholab / Malcolm

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

https://idaholab.github.io/Malcolm/

Other

349 stars 59 forks source link

Single Sign On (SSO) #297

Open mmguero opened 9 months ago

mmguero commented 9 months ago

Malcolm currently supports two authentication modes:

basic auth
LDAP/Active Directory

Both of these are done through NGINX so that it can be authenticated in one place for all of Malcolm (rather than in individual components like Arkime, Dashboards, etc., which would otherwise all have their own authentication).

We should look into adding SSO as a third method, based on whatever NGINX could support for that via plugins or whatever (keycloack, etc.).

mmguero commented 6 months ago

A few possible resources

Luzifer/nginx-sso
Configure NGINX and Keycloak to enable SSO for proxied applications

mmguero commented 1 week ago

A comment from a Mal.Con24 attendee:

AuthN support for Authentik would be great.