Tag: SSO

InCloud NativeComplianceficamicamIdentity ManagementKubernetesOpen SourceOpenShift
That’s right, except for one single use case, you shouldn’t ever use certificates for authentication to Kubernetes clusters.  Its simply not as secure as it appears, especially when OpenID Connect is available.  In this blog post we’re going to walk through a quick refresher of public key cryptography, detail why using it for authentication to…
InCloud NativeKubernetesOpen Sourcesaml2ssoUncategorizeduser provisioning
Our open source Kubernetes Identity Manager is a great way to manage your Kubernetes cluster.  It gives you an authentication portal you can use to access to your dashboard and use kubectl without messing with kube/config files as well as a way to consistently provision namespaces and manage access to those namespaces.  There are other…
InCloud NativeIdentity ManagementOpen SourceOpenShiftsaml2sso
We're proud to announce the release of Unison and OpenUnison 1.0.13.  This is a maintenance release with some minor updates for easier integration into development environments, better support for OpenShift 3.7 and other user facing enhancements.  OpenUnison and Unison are both available from the Downloads page and the documentation is available as well. Tasks: 1.0.13...
InComplianceficamicamIdentity ManagementImplementation CostsOpen Sourcessouser provisioning
If you’ve done any work for or with the US federal government, you’ve heard the acronym ICAM or FICAM.  It stands for the Federal Identity, Credential and Access Management standards outlined at https://gsa.github.io/ficam-arch/.  These are a set of standards agencies should follow when it comes to identity management, items like using your PIV cards for authentication…
InAmazon Web ServicesCloudCloud NativeIdentity ManagementInfrastructure as a ServiceKubernetesLinuxOpen SourceOpenShiftPaaSubuntu
We’re pleased to announce the immediate availability of Unison and OpenUnison 1.0.8. This release brings new features specifically aimed at Cloud Native systems: OpenID Connect support, both as a relying party and as an identity provider Kubernetes SSO integration MongoDB Support for storing authorization data and additional attributes outside of your corporate Active Directory Identity…
InCloudCloud NativeComplianceIdentity ManagementImplementation CostsOpen SourceOpenShiftRed Hat
The OpenShift team at Red Hat has put together a GREAT compliance guide for OpenShift.  This doc does a great job detailing each control in NIST 800-53.  There’s one major compliance issue that this document explicitly leaves to the “Organization” – identity management.  As you go through this document you’ll notice that nearly every control…
InAmazon Web ServicesCloudIdentity ManagementInfrastructure as a Service
Deploying applications to Amazon Web Services with enterprise identity just got easier.  You can now deploy Unison directly from the AWS Marketplace in a fully configured AMI.  The AMI includes everything you need to get started: Unison is deployed and ready for configuration Firewall rules are in place for forwarding 80 and 443 to 8080 and…