OpenStack Summit May 2015 Vancouver has ended
View analytic
Monday, May 18 • 11:15am - 11:55am
Dynamic Policy for Access Control

Sign up or log in to save this to your schedule and see who's attending!

Who can do what? In OpenStack, it is the Policy engine that controls these decisions. A secure deployment means moving beyond the default policy provided with the base distribution. But how do you write policy
rules that reflect your security decisions? This presentation, Adam Young, a core Keystone developer from the Red Hat Identity Management team, explain the access control policy mechanism from start to finish: How Keystone separate authentication from authorization, why the default policy file is so simplistic, how to build policies that reflect your
organization, and the capabilites and limitation of policy enforcement. We'll conclude with a view of the future of policy management in OpenStack.

avatar for Adam Young

Adam Young

Senior Software Engineer, Red Hat, Inc
Adam Young is a member of Red Hat's OpenStack team and has been a core developer on Keystone since it was an incubated project. | Adam has been at Red Hat for 5+ years, working on various systems management tools, including the Identity Management component of | Red Hat Enterprise... Read More →

Monday May 18, 2015 11:15am - 11:55am
Room 211

Attendees (0)