Hello,
Would it be possible to extend authentication methods between the agent and the server to support mTLS?
At my company (MDM software editor, private source code), we are considering supporting Linux endpoints and doing so, we wants as much as possible to rely on FOSS elements on the endpoint.
Evaluating all inventory and management solution existing on the market, so far we only see FusionInventory being made to be server agnostic, and having been successfully used by multiple server side implementations.
Working with FusionInventory would match our need of consoling on existing FOSS solution with support for multiple OS, and contributing back when we need more feature.
And the main one for that is the support for mTLS authentication between the agent and the server.
Our company is focused on security and removing passwords from everything, so we would like to improve FusionInventory agent to support not only BASIC authentication but also mTLS.
Question around that are:
- would the maintainer be open to that idea?
- and would you be open to Pull-Request on that or do you prefer to touch authentication feature by yourself?
If you are open to contribution, where should it be sent? The repository for agent (both normal and rust) haven't changed for years, are they the main one and the agent are now complete enough to just be in code maintenance when needed? Or is the main repo somewhere else?
Hello,
Would it be possible to extend authentication methods between the agent and the server to support mTLS?
At my company (MDM software editor, private source code), we are considering supporting Linux endpoints and doing so, we wants as much as possible to rely on FOSS elements on the endpoint.
Evaluating all inventory and management solution existing on the market, so far we only see FusionInventory being made to be server agnostic, and having been successfully used by multiple server side implementations.
Working with FusionInventory would match our need of consoling on existing FOSS solution with support for multiple OS, and contributing back when we need more feature.
And the main one for that is the support for mTLS authentication between the agent and the server.
Our company is focused on security and removing passwords from everything, so we would like to improve FusionInventory agent to support not only BASIC authentication but also mTLS.
Question around that are:
If you are open to contribution, where should it be sent? The repository for agent (both normal and rust) haven't changed for years, are they the main one and the agent are now complete enough to just be in code maintenance when needed? Or is the main repo somewhere else?