|
|
|
|
|
|
by user5994461
3474 days ago
|
|
|
Still need a secret to access the secret store... so steal the secret then steal the secrets in the store. I fail to see how it is secured. (Though, I can understand that it is less bad than a YOLO policy). > Many organizations get pretty close -- I'm told that the DoD pretty much authenticates everything with smart cards, for example. I've been at a place with RSA SecurID (smart card and OTP) + active directory account as SSO authentication for everything (use one or both for 2FA). It was nice and well done. |
|
|