voice ID adoption won't work anyways, its not a secure way. consider a person has throat infection, his voice will obviously be deep due to the infection. if we spare that as well, openAI has launched a voice clone AI. Those who are using it now will eventually change it.
> its not a secure way. consider a person has throat infection
Sadly providers' narrow view of "security" fails to recognise that as a lack. It considers it merely an access interruption, workaroundable by fallback to backup methods of authentication, even if that's a costly in-person visit to the bank.
The bigger problem though is the whole idea that something so unsecretable and reproducible as voice should ever be considered for ID.
well you mentioned the system only adds the account to a group in AD, if i am not wrong Azure directories work for cloud based platform, and also it requires the company to use their own domain for sso, AD is now Entra ID. But what about the permissions that AD dont cover like github, jira, database access?
Jira and bitbucket are also integrated in the AD groups, the access to servers is provided through an server in the middle for root users and an obscure pam module provides access to non-root users.
is AD single point contact or multi point approval system, can people in between approve the requests? and can the tickets be raised for a certain permission? can that permission be tracked? i think AD is merely a portal for azure and other cloud platforms.
AD is the source of truth that is changed updated by the permission system. The permission system tracks the progress and the people who approve it.im merly a user of it and i can say that an absolute minority of applications don't use the AD for authentication.
so is it safe to beleive that AD is multi-point approval system, almost for all applications, and tickets can be raised using it? So that means making another platform is rather obsolete, isn't?
Also I have never used AD but reading its docs i came to know that, for using sso the company has to use the domain provided by the AD, like yourcompanyname@microsoft.com, what company will want its users to sign in using this kind of a domain?
Ad is an extension omtop of ldap.using the kerberos like usernames is possible, but most systems accept the username, since there are no conflicts with the usernames.
if you want to read modern philosophy, go for 48 laws of power, and human laws by robert Greene. These two books are better than any self help books collectively which are available today!
if you create a project, create it as if people would use it, not to keep it in github repo, if you keep your project to yourself the entire effort you had put in the project is completely uselesss.
