AWS Open Source Blog

Tag: authentication

diagram: configure Gravitational’s (https://gravitational.com/) Teleport (https://gravitational.com/teleport/) as an authentication proxy for Amazon Elastic Kubernetes Service (Amazon EKS (https://aws.amazon.com/eks/)) using GitHub as the identity provider for authenticating users.

Authenticating to EKS Using GitHub Credentials with Teleport

This post describes how to configure Gravitational’s Teleport as an authentication proxy for Amazon Elastic Kubernetes Service (Amazon EKS), using GitHub as the identity provider for authenticating users. In this example, Teleport is installed onto a stand-alone EC2 instance and configured to use GitHub authentication to authenticate users identities. Once authenticated, the role assigned to […]

Read More

Deploying the AWS IAM Authenticator to kops

This post is an updated version of Deploying the Heptio Authenticator to kops. Heptio Authenticator has since been donated to the Kubernetes Special Interest Group (SIG) AWS, allowing the project to be collaboratively worked on. Now, instead of needing to manually configure the Authenticator, you can use kops primitives to deploy automatically when a cluster […]

Read More
Integrate SAML 2 with AD and SSO diagram

Integrating LDAP/AD Users to Kubernetes RBAC with the AWS-IAM-Authenticator Community Project

中文版 Our customers ask us how they can secure access to their Amazon Elastic Container Service for Kubernetes (Amazon EKS) or Kubernetes on EC2 clusters. Our enterprise customers have implemented Active Directory (AD), Active Directory Federated Services (ADFS), or Lightweight Directory Access Protocol (LDAP) for identity and access management on-premises, and use AWS Identity and […]

Read More
Deploying the Heptio Authenticator to kops

Deploying the Heptio Authenticator to kops

This post has been updated – Deploying the AWS IAM Authenticator to kops 中文版   The Kubernetes 1.10 release has included alpha support for the client-go package to process external ExecCredential providers. This is being used to power the authentication against Amazon Elastic Container Service for Kubernetes (EKS) clusters while still following one of the […]

Read More