We are thrilled to announce that Border0 now supports Kubernetes services, enabling you to access your Kubernetes clusters from anywhere in the world without the need for a VPN, and all using your SSO credentials. This new feature seamlessly integrates with your users’ existing workflow, allowing users to use kubectl just as you're used to, but with the enhanced security, visibility, and control that you’re used to getting with Border0.
The Challenges
Imagine trying to access your Kubernetes cluster remotely, only to be stuck in a maze of cumbersome VPNs and jump boxes. You're not alone! Many users struggle with this frustrating experience, longing for a simpler way to access their clusters simply using their SSO credentials.
Administrators have their own set of challenges. They require a single, centralized platform to manage Kubernetes access controls, specifying who can do what within their environments. Ideally, this platform should offer the ability to configure fine-grained, Kubernetes-specific permissions. Additionally, visibility into cluster activity is crucial for auditing and troubleshooting. This includes the ability to replay kubectl exec sessions, providing a complete audit trail and simplifying the troubleshooting process.
Seamless User Experience
Obviously it is important to not compromise on the user experience and keep the users workflow the same. Good news for developers and operations teams! The way you interact with your Kubernetes clusters remains unchanged. You can continue using kubectl or tools like Lens to manage your resources, exec into containers, and monitor your clusters, but now you can do it from anywhere. No more dealing with cumbersome VPNs or restrictive network setups. With Border0, you get direct, secure access to your clusters, no matter where they are hosted.
Enhanced Security, Visibility and Control
To address the challenges outlined earlier, Border0 offers a rich set of security features packaged in a user-friendly experience that your users will love. Let’s take a deeper look at how Border0 enhances your Kubernetes security, control and provides deep levels of visibility.
SSO Integration: Integrating custom identity providers with Kubernetes directly can be challenging. Using Border0, you can leverage your existing SSO provider and Directory service to authenticate and manage user access effortlessly. Assign roles and permissions based on group membership, ensuring that your access policies are always up-to-date and aligned with your organization's identity management practices.
API Audit trails
Every action performed by your users on your Kubernetes cluster is meticulously recorded and instantly available for review in the Border0 Admin Portal. Plus, you have the flexibility to manage session log storage yourself by configuring custom storage options, giving you complete control over your session data.
Full Session Recording
In addition to audit logs, Border0 records all kubectl exec requests, which you later replay as video or text or feed into your organization's SIEM solution. This feature captures every action taken within your containers, enabling you to audit and review any operations, which is invaluable for compliance, security, and troubleshooting purposes.
Granular Access Policies: Define detailed Kubernetes specific policies that control what users can see and do within your Kubernetes environment. You can specify allowed API actions, limit access to specific namespaces, and control which resources can be interacted with. This level of control ensures that users only have the permissions they need, reducing the risk of unauthorized access or actions.
Just-in-Time access to Kubernetes clusters
With Border0’s Just-in-Time (JIT) access requests and Zero Standing Privileges (ZSP) workflows, users can request temporary access to specific Kubernetes resources for a defined period, given a provided justification. This ensures that privileges are granted only when necessary and for a limited time, minimizing the risk of long-standing excessive permissions to your critical Kubernetes environments.
Simple Setup, Powerful Features
Border0's integration with Kubernetes is non-invasive to your employees' workflows and tooling. You can continue to use the clients you love, whether that’s kubectl, k9s, or Lens, without any disruptions. Our goal at Border0 is to provide solutions that strike the perfect balance between security and usability, ensuring that administrators maintain control and visibility while end-users enjoy seamless access to the resources they need.
Main Takeaways:
Seamless Integration: Access your Kubernetes clusters from anywhere without the need for a VPN, using your SSO credentials.
Enhanced Security: Benefit from granular access policies, full session recording, and robust SSO integration.
Complete Visibility: Keep track of every action performed within your Kubernetes environment for compliance, security, and troubleshooting purposes.
Non-Invasive Setup: Continue using your favorite Kubernetes tools without any workflow disruptions.
Get Started Today
Ready to experience these benefits firsthand? Sign up for our free community edition and start your journey with Border0 today. See for yourself how easy it is to access Kubernetes while enjoying enhanced visibility and control - all within minutes of setup!