Presented by

  • William Brown

    William Brown
    https://fy.blackhats.net.au/

    William is a Senior Software Engineer at SUSE Labs where he specialises in developing opensource identity management systems. As the creator of Kanidm and Webauthn for Rust, a W3C Webauthn Participant, a member of the 389 Directory Server team, and a former system administrator at a Group of Eight University, he has extensive experience in the IDM space. When not working on authentication, he can probably be found doing flips and spins on a pole.

Abstract

Everyday we all interact with Authentication systems. From when we login to our laptops, to authenticating at work and even when we build websites or homelabs. For this reason, many of us will have deployed and configured authentication servers - and most of us associate that experience with complexity, confusion and frustration. More than one reader will have an involuntary twitch when I say "Kerberos" or "LDAP". In this talk we'll explore the history of opensource authentication, how we got into this LDAP trap and why it often leads to frustration. We'll then go through a live demonstration of Kanidm - A new opensource IDM that is designed to be secure, fast and easy to use and deploy. This demonstration will go through configuring a new instance, deploying users and groups, the user interface, replication and, openid-connect and linux client authentication.