Identity in OpenStack: the Challenge of Multitenancy
Presented by:
Colleen Murphy
Colleen Murphy
from
SUSE
I have worked at SUSE as a cloud developer for the last two years. A long-time OpenStack contributor, I am the Project Technical Lead for the OpenStack keystone project and am a core contributor for the OpenStack rpm-packaging project and OpenDev infrastructure team and have served on the OpenStack Technical Committee.
Keystone is the OpenStack component responsible for identity management and user authentication and authorization, which has unique challenges in cloud-like environments where secure sharing of resources is an essential requirement and yet is fundamental to the core idea of collaborative computing. This introductory talk will give an overview of the keystone project, including:
- The many ways users and applications can securely authenticate with keystone, including SAML2.0, OpenID Connect, X.509 and Kerberos
- The implications for authorization in a multitenant environment and how role-based access control is designed in keystone
- How keystone relates to projects outside of the OpenStack ecosystem such as Kubernetes
- Date:
- 2019 May 26 - 14:45
- Duration:
- 45 min
- Room:
- Saal (Main Hall)
- Conference:
- openSUSE Conference 2019
- Language:
- Track:
- Cloud and Containers
- Difficulty:
- Medium