Federated SSO Support for Authentication
in progress
Robby GreenLeaf
Equinix Metal Organizations would like the ability to integrate their identity provider to authenticate into the Metal Console. By configuring both their identity provider and Equinix Federated SSO information organizations should be able to use their selected identity provider as a log in method.
S
Sal Carrasco
in progress
R
Ravinder Braich
Merged in a post:
IAM roles and service accounts for devices
Marques Johansson
An enabling feature of the Amazon, Google, and other cloud APIs is that IAM roles can be ascribed and inherited by devices. This makes it possible for a Device provisioned through UserData to provision more devices (including storage or networking) or activate other related API features.
While these devices may be provisioned with a token allowing for such behaviors, that token must then be maintained. IAM roles (default service accounts) allow for chosen devices to have true robot access to authorized actions of the API. These devices do not need further API tokens grants, revocation, or rotation. The identity of the node is known to the API service and it can therefor authorize the machine to make API calls, acting with the roles afforded that machine's service account.
Dimitry Sanivsky
We need Azure SSO.
Francois-Xavier Jammes
As part of our migration to a new Identity service, we’re planning to add this capability to our product. We are discussing the details internally and we will communicate an ETA once we have one.
Zain Mujtaba
It looks like this has been planned since Nov 2020. When will this be in place?
E
Eran Guy
Please consider SCIM support as part of this effort- user provision/de-provision is important.
G
Greg Swift
Group sync/access mapping would be very nice to have as well!
R
Ravinder Braich
planned / on deck
Bob Fraser
under review
Robby GreenLeaf
Integrations:
SAML
Active Directory / Azure AD
LDAP
Google Auth
OKTA
Auth0
OneLogin
Ping Identity
Matt Johnson
AzureAD would be great!
Load More
→