How do I protect production from unauthorized access in a dynamic compute environment like Kubernetes?
Tetrate Service Bridge (TSB) syncs with your enterprise directory service to automatically onboard and offboard teams and members. InfoSec teams may then define roles and access policies within TSB for those teams and members that make sense for your business. TSB translates those roles and policies to your underlying infrastructure so you don’t need to configure that infrastructure directly. This means that you don’t need to configure each Kubernetes cluster with team and individual permissions and keep them up to date. TSB manages all of that for you, based on a centrally authored policy backed by your organization’s directory service.
In addition, access to every workload is dynamically authenticated and authorized based on centrally-managed policy. mTLS prevents eavesdropping and ensures message-level authenticity and integrity. And TSB’s multitenancy features make it easy to author policy that allows teams access to resources they need while protecting those they don’t.