ApacheCon EU 2016 has ended
ApacheCon Europe 2016
Click here to Register or for more information 
Back To Schedule
Wednesday, November 16 • 15:30 - 16:20
Next Generation Directory-Based User Management for Cloud Infrastructure - Shawn McKinney, Symas Corporation & Katarína Valaliková, Evolveum

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

(also in big data)

The IETF standard RFC2307 has long been a best-practice for storing security policies of unix machines across tcp/ip networks. It has a common data format so that a uniform security policy can be applied across every node in the network. The problem is keeping the security policy current. There needs to be a mediator to automatically keep events in sync. Access must be granted when new machines pop up without delay, and most importantly, removed, when no longer needed. At the same time rigid policies must be maintained about who can access a machine when, and for what purpose, or for that matter, who can grant that access, and under what conditions. Everything must also be backed up by a centralized audit trail. Here weÛªll present an approach for doing this using some open source software. There is a demo based on a hypothetical case study.

avatar for Shawn McKinney

Shawn McKinney

Software Architect, Symas
Over twenty-five years as software developer and architect. Most of that time specializing in software security. Started an open source project called Fortress.

Katarína Valaliková

Identity Architect, Evolveum

Wednesday November 16, 2016 15:30 - 16:20 CET