Hey! How do you giving access to deployed services...
# platform-toolboxs
Svyatoslav M
04/05/2023, 9:11 AMHey! How do you giving access to deployed services in k8s to your developers?
n
Neil Millard
04/05/2023, 9:18 AMWhat, why? we store the logs in Elastic
s
Svyatoslav M
04/05/2023, 9:19 AMHow your developers getting access to Elastic? @Neil Millard
n
Neil Millard
04/05/2023, 9:23 AMah, via ldap login over a vpn
p
Patryk Bak
04/05/2023, 10:18 AMagree with @Neil Millard, in OKD for example you can integrate LDAP this way: https://docs.okd.io/latest/authentication/identity_providers/configuring-ldap-identity-provider.html plus then you can map identities to groups -> groups to cluster role bindings or role bindings and in that way manage access to different cluster resoruces
h
Hugo Pinheiro
04/05/2023, 12:01 PMAws SSO + CloudFlare zero trust
a
Asaf Erlich
04/05/2023, 2:50 PMOkta saml group time limited access, we have a service that adds you to the group and then revokes it after a period of time
z
Zac Rosenbauer
04/05/2023, 6:19 PM@Svyatoslav M what logging tools are you using i.e. Grafana/Datadog/Sumologic?
s
Spiros Oikonomakis
04/05/2023, 6:28 PMI think first we need to define what type of access. Teleport with SSO and the k8s RBAC is another option but it depends what problem we are trying to solve
60 Views