[throwawayian]

Security.

Having to pay for SAML and SCIM integration.

MDM and EDR.

Security baseline configuration deployments for different OS.

It’s a farce.

[Foobar8568]

You mean the security in large organizations is a farce?

SAML/ SCIM Integration are often buggy or doesn't work as advertised..

MDM is just a circus in making, EDR can be easily bypassed...

Pentests are barely worth more than script kiddies even from well known and recognized vendors.

I am not even specialized in sec and it drives me crazy the amount of bypass/work around in IT organizations while pretending everything is well managed and design.

[westurner]

Re: IAM cost workarounds in SMBs, SAML / Oauth2/OIDC / LDAP:

From "Show HN: Skip the SSO Tax, access your user data with OSS" https://news.ycombinator.com/item?id=35529042 :

glim: https://github.com/doncicuto/glim

"Proxy LDAP to limit scope of access #60" https://github.com/doncicuto/glim/issues/60

glauth: https://github.com/glauth/glauth

slapd-sql: https://linux.die.net/man/5/slapd-sql

gitlab-ce-ldap-sync (PHP) https://github.com/Adambean/gitlab-ce-ldap-sync

Open Source SSO for SMB

[westurner]

"Launch HN: SSOReady (YC W24) – Making SAML SSO painless and open source" https://news.ycombinator.com/item?id=41110850 :

ssoready: https://github.com/ssoready/ssoready