Policy-as-Code for Infrastructure-as-Code with OPA and OpenTofu
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Learn how to automate and secure infrastructure management in this conference talk that demonstrates the integration of Open Policy Agent (OPA) with OpenTofu for policy-as-code implementation. Discover how to overcome manual configuration challenges by implementing automated policy enforcement for infrastructure changes. Master the use of OPA's Rego policy language to prevent unauthorized modifications, ensure proper resource provisioning, and maintain naming convention compliance. Through practical demonstrations, explore how to create dynamic policies using OpenTofu state data and witness a complete Infrastructure-as-Code deployment pipeline featuring both policy enforcement and update mechanisms. Gain valuable insights into streamlining cloud infrastructure management while maintaining security and compliance standards through automated policy controls.
Syllabus
Policy-as-Code for Infrastructure-as-Code with OPA and OpenTofu - Colin Lacy, Cisco
Taught by
CNCF [Cloud Native Computing Foundation]