Deep diving for pearls of wisdom in setting up policy and permissions

The OpenStack identity service (code named Keystone) provides a single point of integration for managing authentication, authorization, and service catalog services.

In this talk we will go deep into the various ways of setting up and managing the policy files, permissions and access control needed to protect an OpenStack cloud. Support in this area has been in transition for a couple of years, so now is a great time to take stock of where we are, what you can achieve today, and what is planned in upcoming releases. Lots of information to review, for sure. Pearls of wisdom? Well, maybe, but that will probably require a trip to the bar afterwards! :)

We are delighted to have Henry Nash as a guest speaker. Henry works in IBM's Cloud division as an OpenStack Architect and is a core contributor to OpenStack Keystone, driving enterprise capabilities into OpenStack as well as IBM's products that use OpenStack. He has a long history in the creation of enterprise software, having founded 5 venture backed startup companies in Europe and USA, finally coming to IBM via acquisition in 2009. Among the awards these companies have received are both The Queen’s Award for Technology and The Queen’s Award for Export. He holds a 1st class honours degree in Electrical Engineering from the University of Southampton, UK.