Security
Describes tasks that help securing the service mesh traffic.
- Basic Istio Authentication Policy. Shows you how to use Istio authentication policy to setup mutual TLS and simple end-user authentication.
- Testing Istio mutual TLS authentication. This task shows you how to verify and test Istio's automatic mutual TLS authentication.
- Setting up Basic Access Control. This task shows how to control access to a service using the Kubernetes labels.
- Setting up Secure Access Control. This task shows how to securely control access to a service using service accounts.
- Setting up Istio Role-Based Access Control. This task shows how to set up role-based access control for services in Istio mesh.
- Per-service mutual TLS authentication control. This task shows how to change mutual TLS authentication for a single service.
- Plugging in root certificate, signing certificate and key. This task shows how operators can configure Citadel with existing root certificate, signing certificate and key.
- Enabling Citadel health checking. This task shows how to enable Citadel health checking.
- Mutual TLS over HTTPS services. This task shows how to enable mTLS on HTTPS services.