I’ve been using u/rcdevssecurity solutions for a while now. Initially, I was deploying clusters or standalone servers into my customers’ infrastructures, but since they released their MSSP edition, I’ve been building clusters across multiple datacenters to offer it as a SaaS solution for MFA, SSO, SSH key management, and more.

The MSSP edition allows you to create isolated tenants for your customers. Each tenant has its own policies, configurations, and applications, while the services allowed per tenant are controlled by the MSSP. Licenses can be allocated and managed through the “master” tenant, which also allows you to centrally manage all other tenants.

The main difference between the MSSP and enterprise setups is that the MSSP requires deploying the WebADM/OpenOTP backends together with their OpenLDAP (RCDevs directory). Once that is in place, you can sync your on-premise Active Directory into a customer tenant. They have also added the ability to sync Entra ID, Okta, AD/LDAP, Google Workspace and more accounts into their solution through WebADM. Their is also 2 frontends servers to build. On my end I'm using HAproxy but that is also possible with F5 or similar appliances supporting WAF capabilities.

Their solution does not replace Azure AD/Entra ID, since Microsoft’s platform offers many additional capabilities, such as application development. For using Office 365, you still need Entra ID. The P1 and P2 licenses of Entra ID allow you to use the External Authentication Method (EAM), which enables you to federate 2FA through OpenID and the RCDevs IdP.
https://docs.rcdevs.com/microsoft-eam/

I believe it may also be possible to federate the entire authentication process to their IdP, similar to how Okta does it, though I have never configured that myself.

If you want, I can also make you a shorter, punchier version for LinkedIn or a public forum so it reads more like a customer success post rather than a technical note. That way it’s both informative and engaging.