Last year, I transitioned from the on-prem ONTAP product group over to the Google CVS and Astra group to work on some new challenges. While over there, I created some new stuff. For starters, I partnered up with Oliver Krause to work on a Cloud Volumes Services security doc for Google Cloud. You can find … Continue reading New Year, New Role!
LDAP
NFS Kerberos in a Kubernetes pod? That’s unpossible!
Recently, I've been on a Kubernetes n00b journey and have been documenting the steps here: This is the Way – My K8s Learning Journey, Part 1: Installing my First K8s Cluster I've also started a new video series called "NetApp Nailed It: Kubernetes Edition" where I encounter problems of my own making and ask experts for … Continue reading NFS Kerberos in a Kubernetes pod? That’s unpossible!
It’s a Kerberos Khristmas!
Recently, I was working on a project where I was creating a POC of an Ubuntu container that could authenticate to LDAP and mount NFS Kerberos mounts without any interaction that would eventually be used in a Kubernetes environment. It was an improvement on the container image I created a while back in "Securing NFS … Continue reading It’s a Kerberos Khristmas!
Brand new tech report: Multiprotocol NAS Best Practices in ONTAP
I don't like to admit to being a procrastinator, but... (Not actually a sloth) Four years ago, I said this: And people have asked about it a few times since then. To be fair, I did say "will be a ways out..." In actuality, I started that TR in March of 2017. And then again … Continue reading Brand new tech report: Multiprotocol NAS Best Practices in ONTAP
Behind the Scenes: Episode 170 – Active IQ
Welcome to the Episode 170, part of the continuing series called “Behind the Scenes of the NetApp Tech ONTAP Podcast.” This week on the podcast,we talk NetApp Active IQ and how it can benefit storage administrators with guest co-host Dan Isaacs (@danisaacs), Active IQ TME Brett Albertson (bretta@netapp.com) and director of Solutions Engineering, Kim Weller (https://www.linkedin.com/in/wellerkim/)! Also, check out … Continue reading Behind the Scenes: Episode 170 – Active IQ
NFS Kerberos in ONTAP Primer
Fun fact! Kerberos was named after Cerberus, the hound of Hades, which protected the gates of the underworld with its three heads of gnashing teeth. Kerberos in IT security isn't a whole lot different; it's pretty effective at stopping intruders and is literally a three-headed monster. In my day to day role as a Technical … Continue reading NFS Kerberos in ONTAP Primer
May 2016 update to TR-4073 (the NetApp NFS Kerberos/LDAP manifesto)
It’s time for new technical report updates! Since clustered Data ONTAP 8.3.2 is now available, we are publishing our 8.3.2 updates to our docs. I finally got the updates added to TR-4073: Secure Unified Authentication. What is Secure Unified Authentication? Secure Unified Authentication is a solution-based methodology to provide secure (via Kerberos) unified (via central LDAP servers for … Continue reading May 2016 update to TR-4073 (the NetApp NFS Kerberos/LDAP manifesto)
LDAP::LDAP Servers and Clients – Part 5
What's the difference between an LDAP server and client?
LDAP::LDAP servers and clients and bears, oh my! – Part 5
What's a client? What's a server? How does it relate to LDAP?
LDAP::Distinguishing Distinguished Names in LDAP – Part 4
In LDAP, objects are stored in a hierarchical structure, much like folders in a file system. Each object has a unique identifier so that LDAP queries can find them quickly. These identifiers are known as "distinguished names." But what are they used for?
Why Is The Internet Broken? 