August 7, 2018

Kubernetes LDAP Authentication

Recently I had a chance to work on implementing LDAP authentication for Kubernetes. This post will describe my experience and some underwater stones that I’ve faced on my way to it. What tool should I choose? There a lot of tools and blog posts/videos that can help you to add LDAP authentication for your Kubernetes cluster: dex from CoreOS - I don’t know anything about the future of this project because of the fact that CoreOS was acquired by RedHat. Read more

July 6, 2018

How to Enable Kubernetes Auditing with Kubeadm

Welcome back! In this post, I want to describe how you can enable auditing in Kubernetes cluster that is going to be deployed with kubeadm. Auditing is really important in case you’re actively using Kubernetes cluster and you want to know what’s really happenening behind the curtains. With auditing you can answer the following questions: what happened? when did it happen? who initiated it? on what did it happen? Read more

November 9, 2017

How to Use Notary

Notary is a tool for publishing and managing trusted collections of content. Publishers can digitally sign collections and consumers can verify integrity and origin of content. This ability is built on a straightforward key management and signing interface to create signed collections and configure trusted publishers With Notary anyone can provide trust over arbitrary collections of data. Using The Update Framework (TUF) as the underlying security framework, Notary takes care of the operations necessary to create, manage, and distribute the metadata necessary to ensure the integrity and freshness of your content. Read more

Creative Commons - Attribution, Noncommercial, No Derivative Works 3.0 License