Cloud workloads must comply with your organization's security policies, and joining them to an identity management domain can play a crucial role. Automating this process takes it a step further. Learn how the Podengo project enables the automatic and secure enrollment of VMs into a FreeIPA domain, with live demonstrations!

FreeIPA is an open-source identity management solution offering authentication, access control, and other security features for Linux systems. It helps organizations meet their security and compliance objectives, even when running workloads on public clouds. However, traditional workflows, such as using SSH keys to access machines, often fall short of meeting modern security standards.

Enter Podengo. The Podengo service registers your FreeIPA deployment (which could be on-premises), authenticates cloud VMs, and enables automatic and secure domain enrollment. This talk will explain how the protocol works, what is required, and how we leverage the Podengo service to provide the Domain Join feature in the Red Hat Hybrid Cloud Console.

After covering the fundamentals and showcasing current use cases, we will explore existing feature gaps, how to address them, and potential support for additional identity management solutions.

This presentation is particularly relevant for system and cloud administrators, infosec professionals, and those curious about cryptography and secure identity management.

References:

FreeIPA Project
Podengo Project on GitHub