https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/Recent content in How-to Guides for Configuring IDPs on PinnipedHugo -- gohugo.ioen-ushttps://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-federationdomain-idps/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-federationdomain-idps/This guide explains how to associate one or more external identity providers (IDPs) with a FederationDomain. It also details how to configure identity transformations and identity policies for those identity providers. Prerequisites This how-to guide assumes that you have already installed the Pinniped Supervisor and have already read the guide about how to configure the Supervisor as an OIDC issuer. This guide focuses on the use of the spec.identityProviders setting on the FederationDomain resource.https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor/The Supervisor is an OpenID Connect (OIDC) issuer that supports connecting “upstream” identity providers to many “downstream” cluster clients. When a user authenticates, the Supervisor can issue JSON Web Tokens (JWTs) that can be validated by the Pinniped Concierge. This guide explains how to expose the Supervisor’s REST endpoints to clients. Prerequisites This how-to guide assumes that you have already installed the Pinniped Supervisor. Summary When the Pinniped Supervisor is installed using the YAML files which are attached to the GitHub releases, then the following additional configuration is required before your end users can use the Supervisor:https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-auth0/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-auth0/The Supervisor is an OpenID Connect (OIDC) issuer that supports connecting “upstream” identity providers to many “downstream” cluster clients. This guide shows you how to configure the Supervisor so that users can authenticate to their Kubernetes cluster using their Auth0 credentials. Prerequisites This how-to guide assumes that you have already installed the Pinniped Supervisor with working ingress, and that you have configured a FederationDomain to issue tokens for your downstream clusters.https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-azuread/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-azuread/The Supervisor is an OpenID Connect (OIDC) issuer that supports connecting a single “upstream” identity provider to many “downstream” cluster clients. This guide shows you how to configure the Supervisor so that users can authenticate to their Kubernetes cluster using their Azure Active Directory credentials. Prerequisites This how-to guide assumes that you have already installed the Pinniped Supervisor with working ingress, and that you have configured a FederationDomain to issue tokens for your downstream clusters.https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-dex/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-dex/The Supervisor is an OpenID Connect (OIDC) issuer that supports connecting “upstream” identity providers to many “downstream” cluster clients. This guide shows you how to configure the Supervisor so that users can authenticate to their Kubernetes cluster using Dex and Github. Prerequisites This how-to guide assumes that you have already installed the Pinniped Supervisor with working ingress, and that you have configured a FederationDomain to issue tokens for your downstream clusters.https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-github/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-github/The Supervisor is an OpenID Connect (OIDC) issuer that supports connecting “upstream” identity providers to many “downstream” cluster clients. This guide shows you how to configure the Supervisor so that users can authenticate to their Kubernetes cluster using their credentials from GitHub.com or GitHub enterprise server. Prerequisites This how-to guide assumes that you have already installed the Pinniped Supervisor with working ingress, and that you have configured a FederationDomain to issue tokens for your downstream clusters.https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-gitlab/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-gitlab/The Supervisor is an OpenID Connect (OIDC) issuer that supports connecting “upstream” identity providers to many “downstream” cluster clients. This guide shows you how to configure the Supervisor so that users can authenticate to their Kubernetes cluster using their GitLab credentials. Prerequisites This how-to guide assumes that you have already installed the Pinniped Supervisor with working ingress, and that you have configured a FederationDomain to issue tokens for your downstream clusters.https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-jumpcloudldap/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-jumpcloudldap/The Supervisor is an OpenID Connect (OIDC) issuer that supports connecting “upstream” identity providers to many “downstream” cluster clients. JumpCloud is a cloud-based service which bills itself as “a comprehensive and flexible cloud directory platform”. It includes the capability to act as an LDAP identity provider. This guide shows you how to configure the Supervisor so that users can authenticate to their Kubernetes cluster using their identity from JumpCloud’s LDAP service.https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-activedirectory/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-activedirectory/The Supervisor is an OpenID Connect (OIDC) issuer that supports connecting “upstream” identity providers to many “downstream” cluster clients. This guide shows you how to configure the Supervisor so that users can authenticate to their Kubernetes cluster using their identity from Active Directory. Prerequisites This how-to guide assumes that you have already installed the Pinniped Supervisor with working ingress, and that you have configured a FederationDomain to issue tokens for your downstream clusters.https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-entra-id/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-entra-id/Microsoft’s Entra ID is the rebranding of Microsoft Azure AD. For more information, read this. To learn how to configure Entra ID, read our Azure AD documentation.https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-okta/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-okta/The Supervisor is an OpenID Connect (OIDC) issuer that supports connecting “upstream” identity providers to many “downstream” cluster clients. This guide shows you how to configure the Supervisor so that users can authenticate to their Kubernetes cluster using their Okta credentials. Prerequisites This how-to guide assumes that you have already installed the Pinniped Supervisor with working ingress, and that you have configured a FederationDomain to issue tokens for your downstream clusters.https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-openldap/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-openldap/The Supervisor is an OpenID Connect (OIDC) issuer that supports connecting “upstream” identity providers to many “downstream” cluster clients. OpenLDAP is a popular open source LDAP server for Linux/UNIX. This guide shows you how to configure the Supervisor so that users can authenticate to their Kubernetes cluster using their identity from an OpenLDAP server. Prerequisites This how-to guide assumes that you have already installed the Pinniped Supervisor with working ingress, and that you have configured a FederationDomain to issue tokens for your downstream clusters.https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-workspace_one_access/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/docs/howto/supervisor/configure-supervisor-with-workspace_one_access/The Supervisor is an OpenID Connect (OIDC) issuer that supports connecting “upstream” identity providers to many “downstream” cluster clients. This guide shows you how to configure the Supervisor so that users can authenticate to their Kubernetes cluster using their Workspace ONE Access credentials. Prerequisites This how-to guide assumes that you have already installed the Pinniped Supervisor with working ingress, and that you have configured a FederationDomain to issue tokens for your downstream clusters.