Ce diaporama a bien été signalé.
Nous utilisons votre profil LinkedIn et vos données d’activité pour vous proposer des publicités personnalisées et pertinentes. Vous pouvez changer vos préférences de publicités à tout moment.

Role Based Access Controls (RBAC) for SSH and Kubernetes Access with Teleport

107 vues

Publié le

Enterprises are best served by leveraging an RBAC system to manage access to their SSH and Kubernetes resources. With Teleport, an open source software, employers are able to provide granular access controls to developers based on the access they need and when they need it. This makes it possible for employers to maintain secure access without getting in the way of their developers’ daily operations.

Join Steven Martin, solution engineer at Teleport, as he demonstrates how to assign access to developers and SRE’s across environments with Teleport through roles mapped from enterprises’ identity providers or SSOs.

Publié dans : Technologie
  • Soyez le premier à commenter

Role Based Access Controls (RBAC) for SSH and Kubernetes Access with Teleport

  1. 1. Teleport Universal Access Plane www.goteleport.com Role Based Access Control (RBAC) for SSH and Kubernetes Access © Teleport, 2020 | goteleport.com
  2. 2. ● Brief overview of Teleport ● Comparing RBAC vs other methods for securing access in your enterprise ● Defining and using Roles within Teleport ● Demonstration with multiple configured Roles Agenda Role Based Access Control (RBAC) for SSH and Kubernetes Access
  3. 3. 3 SSO
  4. 4. Role Based Access Control (RBAC) Roles defined within an enterprise allow for control assignable to multiple users in a more centralized approach. Other common methods include Discretionary Access Control(DAC) and Mandatory Access Control (MAC).
  5. 5. Role Based Access Control Roles defined within an enterprise allow for control assignable to multiple users in a more centralized approach. Other common methods include Discretionary Access Control(DAC) and Mandatory Access Control (MAC). RBAC
  6. 6. RBAC in Teleport ● Allowed and Denied ● Label Access ● Request Roles for Access Workflow ● Logins ● Kubernetes Groups/Users ● Time To Live (TTL) ● Teleport features access Defining roles in Teleport
  7. 7. SSO to Roles Developer DB Admin Dev Builder Dev DB Groups/Roles Teleport Roles User Auth Connector Resources Usernames: jeff, k8s.. App
  8. 8. RBAC - Enables partitioning access to SSH, Applications and K8s to individual Teleport clusters trusted to a single cluster. - Root cluster roles are mapped to clusters’ individual roles TRUSTED CLUSTERS
  9. 9. Demonstration
  10. 10. How can you do this easily? ● ● ● ● https://github.com/gravitational/teleport
  11. 11. Recommended Next Steps Read “RBAC for SSH & K8s” https://goteleport.com/teleport/docs/enterprise/ssh-rbac Check us out on Github https://github.com/gravitational/teleport Download Teleport https://gravitational.com/teleport/download
  12. 12. Q & A
  13. 13. Thanks!

×