Description
Is your feature request related to a problem? Please describe.
There are a number of Zero Trust solutions (for instance, zscaler) that can ensure some degree of device security posture before allowing a connection. We were trying to create similar behaviour (deny access outright if the device does not have SentinelOne running), but seem unable to do so
Describe the solution you'd like
A way to prevent users from connecting to if a certain process (or processes) are not running on the machine of the user
Describe alternatives you've considered
We have looked into creating a plugin, but it does not look like boundary supports external plugins yet, based on #2454. Or if it does, we couldn't find documentation for it anywhere
Explain any additional use-cases
It would be a pretty good feature for general adoption to ensure that a user is "secure enough" before allowing a connection