https://deploy-preview-3014--pinniped-dev.netlify.app/tags/anjali-telang/Recent content in Anjali Telang on PinnipedHugo -- gohugo.ioen-usWed, 08 Jun 2022 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/posts/formatted-logs-ui-based-ldap-logins/Wed, 08 Jun 2022 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/posts/formatted-logs-ui-based-ldap-logins/Photo by Steve Adams on Unsplash We’ve listened to your requests and are excited to bring some cool user-friendly features that will enhance your Kubernetes Authentication experience. From this release onwards, we will have Pinniped logs in JSON format. We also bring you the ability to use a User Interface (UI) to login with your LDAP or ActiveDirectory credentials. JSON Formatted logs Kubernetes 1.19 introduced the ability to have logs emitted in JSON log format.https://deploy-preview-3014--pinniped-dev.netlify.app/posts/fips-and-more/Wed, 20 Apr 2022 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/posts/fips-and-more/Photo by karlheinz_eckhardt on Unsplash This release continues our theme of providing security-hardening for Kubernetes authentication solutions with Pinniped. Build-Your-Own FIPS compliant Pinniped Binaries We now bring to you information on how to Build-Your-Own Pinniped binaries with FIPS Compliant BoringSSL Crypto. The Federal Information Processing Standard (FIPS) 140-2 publication describes United States government approved security requirements for cryptographic modules. Software that is validated by an accredited Cryptographic Module Validation Program (CVMP) laboratory can be suitable for use in applications for US governmental departments or in industries subject to US Federal regulations.https://deploy-preview-3014--pinniped-dev.netlify.app/posts/secure-tls-idp-refresh/Fri, 21 Jan 2022 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/posts/secure-tls-idp-refresh/Photo by Neil Cooper on Unsplash Pinniped with tighter security posture Kubernetes users deploying Pinniped in production environments have certain compliance control requirements. With the current release of Pinniped, our efforts are to provide features in Pinniped that meet some of these compliance and regulatory requirements. We have added defaults that give secure deployment options to the administrator while maintaining the best user experience for cluster access. With v0.13.0 we include the use of secure TLS ciphers for all components and configurable listener for the Pinniped Supervisor server.https://deploy-preview-3014--pinniped-dev.netlify.app/posts/supporting-ad-oidc-workflows/Tue, 31 Aug 2021 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/posts/supporting-ad-oidc-workflows/Photo by Eelco van der Wal on Unsplash CRDs for easy Active Directory Configuration! Microsoft Active Directory (AD) is one of the most popular and widely used Identity Providers. Active Directory Domain Services (AD DS) is the foundation of every Windows domain network. It stores information about members of the domain, including devices and users, verifies their credentials and defines their access rights. While AD is widely used in legacy systems, configuring Active Directory has been somewhat of a challenge in the cloud native environments.https://deploy-preview-3014--pinniped-dev.netlify.app/posts/supporting-remote-oidc-workflows/Fri, 30 Jul 2021 00:00:00 +0000https://deploy-preview-3014--pinniped-dev.netlify.app/posts/supporting-remote-oidc-workflows/Photo by Jaddy Liu on Unsplash Remote Host Environments and OIDC login flows Enterprise workloads on Kubernetes clusters often run in a restricted environment behind a firewall. In such a setup, the clusters can be accessed via servers sometimes called “SSH jump hosts”. These servers pose restrictions on what the users can execute and typically allow only command line access. Users can use command line utilities such as kubectl, pinniped CLI, etc.