Category: Cloud

InCloudCloud NativeIdentity ManagementKubernetesLinuxOpen SourceSecurityssoTechnologyubuntuUncategorized
Getting started with Kubernetes can be daunting.  In addition to getting Kubernetes up and running, adding in security and authentication can also be difficult.  How do your users login?  What access do they have?  How will you disable access?  In this blog post we’re going to walk through integrating Canonical’s Distribution of Kubernetes (CDK) with…
InAmazon Web ServicesCloudCloud NativeficamicamIdentity ManagementImplementation CostsLinuxOpen SourceOpenShiftRed Hatssouser provisioning
I do identity management the manual way! If it works and I control it then there I stay! The Company Way – How to Succeed in Business Without Really Trying When I was a kid my parents took me to see Matthew Broderick in “How to Succeed in Business Without Really Trying”, a show that…
InCloudCloud NativeIdentity ManagementKubernetesLinuxOpen SourceOpenShiftRed Hat
OK, sorry for the click bait style headline but for the first blog of the new year I thought I’d have some fun. I came across a blog post on twitter from @geek_king about this real nasty bug in the kernel that can give you root access to the host server, breaking out of your…
InAmazon Web ServicesCloudCloud NativeIdentity ManagementInfrastructure as a ServiceKubernetesLinuxOpen SourceOpenShiftPaaSubuntu
We’re pleased to announce the immediate availability of Unison and OpenUnison 1.0.8. This release brings new features specifically aimed at Cloud Native systems: OpenID Connect support, both as a relying party and as an identity provider Kubernetes SSO integration MongoDB Support for storing authorization data and additional attributes outside of your corporate Active Directory Identity…
InCloudCloud NativeComplianceIdentity ManagementImplementation CostsOpen SourceOpenShiftRed Hat
The OpenShift team at Red Hat has put together a GREAT compliance guide for OpenShift.  This doc does a great job detailing each control in NIST 800-53.  There’s one major compliance issue that this document explicitly leaves to the “Organization” – identity management.  As you go through this document you’ll notice that nearly every control…
InAmazon Web ServicesCloudDrupalIdentity ManagementImplementation CostsInfrastructure as a ServiceKubernetesLinuxOpen SourceOpenShift
We’re proud to be a sponsor this year of the Information Security System Association’s (ISSA) international conference.  We’ll be in booth 707 and I’ll be presenting with my colleagues about the US National Capital Region’s Identity and Access Management Program (IAMS) at Secure User Application Access in a Hurry on Thursday November third at 11:30 am…
InCloudIdentity ManagementKubernetesOpen SourceUncategorized
Couldn’t make DevFestDC?  Want to learn about how you can deploy Kubernetes in an identity aware way?  The session recording hasn’t been published yet, but here’s a screen cast of the talk and the demo.  We figured this would be easier to watch then me standing in front of a room. Kubernetes Identity Management at…
InCloudIdentity ManagementKubernetesOpen SourceUncategorized
In our last episode we talked about the new SSO features in Kubernetes 1.3 and got it working.  The flip-side of the access coin from SSO is identity management.  SSO answers the question “who?”, identity management answers “what?” and should also answer “why?”.  In this episode we’re going to walk through Kubernetes’ RBAC model and…
InCloudIdentity ManagementImplementation CostsLinuxOpen Source
Wait, why would an identity management system need an identity management system?  FreeIPA and Red Hat Identity Management (from here on out I’ll be referring to both as FreeIPA) already provide a way to create users, provide authorizations, etc.  Why would I add another layer? There are a couple of answers: FreeIPA will tell you the “who”…