DC/OS DocumentationEnsure the network is set up according to the information for securing your cluster.
All access management in Mesosphere® DC/OS™ is done through the DC/OS Identity and Access Manager (IAM). This includes user account management, login, and authentication token distribution. The IAM provides an HTTP API for managing user accounts in a RESTful fashion.
Authentication tokens can be obtained using OpenID Connect® 1.0, which is an identity layer built on top of the OAuth 2.0 protocol.
Local user and service accounts can be configured for logging in without external dependencies and for automating authentication against the cluster in a secure manner.
Further reading
- Let’s encrypt DC/OS!: a blog post about using Let’s Encrypt with services running on DC/OS.
Future work
We are looking forward to working with the DC/OS community on improving existing security features as well as on introducing new ones in the coming releases.
Next Steps
User Account Management
Managing DC/OS user accounts…Read More
Login
Logging in to your DC/OS cluster…Read More
Authentication
Authenticating users against DC/OS…Read More
Secure computing profiles
ENTERPRISE
Describes how to configure DC/OS to work with Linux secure computing (seccomp) profiles…Read More
Identity and Access Management API
Using the DC/OS Identity and Access Management API…Read More
HAProxy and Admin Router
Configuring HAProxy in front of an Admin Router…Read More