In this post we will cover the topic of securing your Hadoop infrastructure using Apache Knox and Keycloak. We will start with a general introduction of the projects involved and the will look at a sample configuration of both.
Keycloak is an open source Identity and Access Management solution aimed at modern applications and services. It makes it easy to secure applications and services with little to no code.
Commercially supported by RedHat.
Apache Knox in itself provides SSO capabilities but is not a complete identity management solution. So to authenticate our applications and micro services we will delegate the authentication part to Keycloak. Some of the features of Keycloak are
So as you can see Keycloak has an exhaustive list of features for an Identity server and if your organization already is using an identity management server you can also delegate the actual authentication to it by configuring an Identity Broker.
The only prerequisite is to have Java installed on your machine, after that getting started with Keycloak is as easy as downloading the standalone server distribution from the keycloak’s website and heading to the “bin” directory of the server distribution and run the “standalone” boot script.
$ cd bin $ ./standalone.sh
This site uses Akismet to reduce spam. Learn how your comment data is processed.