9e35b2081a
This commit updates the StarlingX OpenStack Local CLI documentation to reflect the latest structural changes to StarlingX OpenStack application with regards to the way container-backed local CLIs are configured. Story: 2010774 Task: 48413 Change-Id: I146401b7517c32f298b3c85c238b8350f7cee9cb Signed-off-by: Luan Nunes Utimura <LuanNunes.Utimura@windriver.com>
59 lines
1.0 KiB
ReStructuredText
59 lines
1.0 KiB
ReStructuredText
.. _index-security-84d0d8aa401b:
|
|
|
|
========
|
|
Security
|
|
========
|
|
|
|
.. _index-security-84d0d8aa401b-kubernetes:
|
|
|
|
----------
|
|
Kubernetes
|
|
----------
|
|
|
|
.. kub-begin
|
|
|
|
|prod-long| security encompasses a broad number of features.
|
|
|
|
.. _overview-of-starlingx-security-ul-ezc-k5f-p3b:
|
|
|
|
- |TLS| support on all external interfaces
|
|
|
|
- Kubernetes service accounts and |RBAC| policies for authentication and
|
|
authorization of Kubernetes API / CLI / GUI
|
|
|
|
- Encryption of Kubernetes Secret Data at Rest
|
|
|
|
- Keystone authentication and authorization of StarlingX API / CLI / GUI
|
|
|
|
- Barbican is used to securely store secrets such as |BMC| user passwords
|
|
|
|
- Networking policies / Firewalls on external APIs
|
|
|
|
- |UEFI| secureboot
|
|
|
|
- Signed software updates
|
|
|
|
.. kub-end
|
|
|
|
Contents:
|
|
---------
|
|
|
|
.. toctree::
|
|
:maxdepth: 2
|
|
|
|
kubernetes/index-security-kub-81153c1254c3
|
|
|
|
.. _index-security-84d0d8aa401b-openstack:
|
|
|
|
---------
|
|
OpenStack
|
|
---------
|
|
|
|
.. os-begin
|
|
|
|
.. os-end
|
|
|
|
.. toctree::
|
|
:maxdepth: 2
|
|
|
|
openstack/index-security-os-a2375141dcc2 |