>for which we don’t have a solution
It's called ZTA, Zero Trust Architecture. Devices shouldn't assume the LAN is secure.
Exactly, LAN is not a "secure" network field. Authenticate everything from everywhere all the time
You got grandma running ZTA now?
This is a problem impacting mass users, not just technical ones.