Four-Project Series

Single Sign-On and Passwordless Authentication you own this product

intermediate Linux command line • basic web application stack
skills learned
AWS Cloud infrastructure • user-account management • multi-factor authentication (MFA) • single sign-on • FIDO2 • WebAuthn
Andrey Ovcharov
4 weeks · 6-8 hours per week average · INTERMEDIATE

pro $24.99 per month

  • access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
  • share your subscription with another person
  • choose one free eBook per month to keep
  • exclusive 50% discount on all purchases

lite $19.99 per month

  • access to all Manning books, including MEAPs!


5, 10 or 20 seats+ for your team - learn more

Play the role of an analyst for Sitting Duck Shipping, a fictional mid-sized company looking to modernize its authentication and authorization stack by moving away from easy-to-forget, easy-to-steal passwords. Your task is to build a proof-of-concept for the new stack, collect information, and put together a project proposal. In this series of liveProjects, you’ll set up the environment for the proof-of-concept, establish multi-factor authentication (MFA), establish single sign-on to reduce the number of required passwords, and implement secure, passwordless authentication. As a result of your efforts, Sitting Duck Shipping’s end users will enjoy increased security and an improved login experience.

These projects are designed for learning purposes and are not complete, production-ready applications or solutions.

book resources

When you start each of the projects in this series, you'll get full access to the following book for 90 days.

choose your plan


only $41.67 per month
  • five seats for your team
  • access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
  • choose another free product every time you renew
  • choose twelve free products per year
  • exclusive 50% discount on all purchases
  • Single Sign-On and Passwordless Authentication project for free

project author

Andrey Ovcharov
Andrey Ovcharov is a senior software engineer at IBM, and has more than twenty years of professional experience in various fields of modern application development, from PHP internals to frontend. Andrey’s keen interest in security, especially authentication, was the catalyst for his ambitious endeavor: to build an affordable wireless biometric authentication device implementing the FIDO2 protocol for passwordless authentication.


These liveProjects are for security professionals who want hands-on experience implementing passwordless authentication, and for software developers who want to better understand modern authentication. To begin these liveProjects you will need to be familiar with the following:

  • AWS Console basics
  • Intermediate Linux command line
  • Basic understanding of authentication (including multi-factor)
  • An iPhone or Android smartphone with biometric features or a USB security dongle with FIDO2 protocol
  • Web application stack basics (web servers, network protocols)

Notes: The AWS instance could cost some money if you have already used up your free tier.

you will learn

In these liveProjects, you’ll learn how to implement the different authentication methods to build a more secure and user-friendly environment for modern cloud infrastructure.

  • Set up the cloud infrastructure for the project
  • Get familiar with the dashboards and configurations
  • Install the most popular application server stack on the Internet
  • Identify and set up the most important user roles and permissions
  • Protect AWS accounts with multi-factor authentication
  • Require users to use MFA when they login to EC2 Instance using an SSH client
  • Configure web applications to use MFA
  • Configure SSO portal to improve user experience by reducing the number of passwords
  • Configure the AWS to use a single sign-on provider
  • Configure Web applications to use a single sign-on provider
  • Configure the authenticator device for passwordless authentication
  • Set up the passwordless authentication for your WordPress installation
  • Research typical security threats to MFA, SSO, and FIDO2 implementations
  • Research possible countermeasures to security threats


You choose the schedule and decide how much time to invest as you build your project.
Project roadmap
Each project is divided into several achievable steps.
Get Help
While within the liveProject platform, get help from other participants and our expert mentors.
Compare with others
For each step, compare your deliverable to the solutions by the author and other participants.
book resources
Get full access to select books for 90 days. Permanent access to excerpts from Manning products are also included, as well as references to other resources.