- Mastering OpenStack(Second Edition)
- Omar Khedher Chandan Dutta Chowdhury
- 206字
- 2021-07-02 23:52:37
Keystone - identity management
From an architectural perspective, Keystone presents the simplest service in the OpenStack composition. It is the core component and provides an identity service comprising authentication and authorization of tenants in OpenStack. Communications between different OpenStack services are authorized by Keystone to ensure that the right user or service is able to utilize the requested OpenStack service. Keystone integrates with numerous authentication mechanisms such as username/password and token/authentication-based systems. Additionally, it is possible to integrate it with an existing backend such as the Lightweight Directory Access Protocol (LDAP) and the Pluggable Authentication Module (PAM).
Keystone also provides a service catalog as a registry of all the OpenStack services.
With the evolution of Keystone, many features have been implemented within recent OpenStack releases leveraging a centralized and federated identity solution. This will allow users to use their credentials in an existing, centralized, sign-on backend and decouples the authentication mechanism from Keystone.
The federation identity solution becomes more stable within the OpenStack Juno release, which engages Keystone as a Service Provider (SP), and uses and consumes from a trusted Provider of Identity (IdP), user identity information in SAML assertions, or OpenID Connect claims. An IdP can be backed by LDAP, Active Directory, or SQL.
- Mastering Proxmox(Third Edition)
- Go Machine Learning Projects
- 輕松學C#
- 21天學通Visual Basic
- 運動控制器與交流伺服系統的調試和應用
- 菜鳥起飛系統安裝與重裝
- 經典Java EE企業應用實戰
- ZigBee無線通信技術應用開發
- 電動汽車驅動與控制技術
- 數據清洗
- Windows 7來了
- Flink內核原理與實現
- 輸送技術、設備與工業應用
- Microsoft 365 Mobility and Security:Exam Guide MS-101
- Pentaho Data Integration Beginner's Guide(Second Edition)