Author: Marc Boorshtein

InCloud NativeComplianceficamicamIdentity ManagementKubernetesOpen SourceOpenShift
That’s right, except for one single use case, you shouldn’t ever use certificates for authentication to Kubernetes clusters.  Its simply not as secure as it appears, especially when OpenID Connect is available.  In this blog post we’re going to walk through a quick refresher of public key cryptography, detail why using it for authentication to…
InCloud NativeKubernetesOpen Sourcesaml2ssoUncategorizeduser provisioning
Our open source Kubernetes Identity Manager is a great way to manage your Kubernetes cluster.  It gives you an authentication portal you can use to access to your dashboard and use kubectl without messing with kube/config files as well as a way to consistently provision namespaces and manage access to those namespaces.  There are other…
InCloud NativeIdentity ManagementOpen SourceOpenShiftsaml2sso
We're proud to announce the release of Unison and OpenUnison 1.0.13.  This is a maintenance release with some minor updates for easier integration into development environments, better support for OpenShift 3.7 and other user facing enhancements.  OpenUnison and Unison are both available from the Downloads page and the documentation is available as well. Tasks: 1.0.13...
InAmazon Web ServicesCloudCloud NativeficamicamIdentity ManagementImplementation CostsLinuxOpen SourceOpenShiftRed Hatssouser provisioning
I do identity management the manual way! If it works and I control it then there I stay! The Company Way – How to Succeed in Business Without Really Trying When I was a kid my parents took me to see Matthew Broderick in “How to Succeed in Business Without Really Trying”, a show that…
InComplianceficamicamIdentity ManagementImplementation CostsOpen Sourcessouser provisioning
If you’ve done any work for or with the US federal government, you’ve heard the acronym ICAM or FICAM.  It stands for the Federal Identity, Credential and Access Management standards outlined at https://gsa.github.io/ficam-arch/.  These are a set of standards agencies should follow when it comes to identity management, items like using your PIV cards for authentication…
InCloudCloud NativeIdentity ManagementKubernetesLinuxOpen SourceOpenShiftRed Hat
OK, sorry for the click bait style headline but for the first blog of the new year I thought I’d have some fun. I came across a blog post on twitter from @geek_king about this real nasty bug in the kernel that can give you root access to the host server, breaking out of your…