Explore the complexities of implementing Kubernetes RBAC and managing authentication and authorization at scale in this 37-minute conference talk from KubeCon + CloudNativeCon. Dive into the challenges faced by Robinhood Markets, Inc. in their quest to implement least privilege company-wide. Learn about the practical difficulties in determining access needs, granting time-bound permissions, and evaluating the scrutiny level for different permissions. Discover insights on cleaning up existing permissions, migrating to a new Identity Provider, and designing sustainable solutions for the future. Gain valuable lessons from real-world experiences, including an unexpected OIDC client deletion incident. Enhance your understanding of K8s Auth{N,Z} and its implementation in large-scale environments.
Kubernetes Authentication and Authorization at Robinhood - Lessons from Reductions, Migrations, and Designing Automation
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
K8s Auth{N,Z} at Robinhood - Learning from Reductions, Migrations and D... Sujith Katakam & Karen Tu
Taught by
CNCF [Cloud Native Computing Foundation]
