CloudIDSummit, profile picture
Uploaded byCloudIDSummit
PDF, PPTX1,441 views

CIS14: PingAccess in Action

The document outlines a deployment scenario for integrating PingAccess with Jenkins as an identity-enabled HTTP reverse proxy to enhance authentication processes for users. It details the components involved, including identity mappings, a virtual host, and the use of PingFederate. The objective is to streamline user sign-ins and improve security in the Jenkins environment.

Embed presentation

Download as PDF, PPTX
PINGACCESS IN ACTION Peter Motykowski Sr. Product Engineering Manager Copyright © 2014 Ping Identity Corp.All rights reserved. 2
Web & API Access Management Confidential — do not distribute Copyright © 2014 Ping Identity Corp.All rights reserved. 3
The 5Ws Confidential — do not distribute •  Who – users of Jenkins, the continuous integration server •  What – Jenkins and PingAccess, PingFederate •  When – live! •  Where – localhost, because WiFi is unreliable •  Why – because we’re tired of signing-in, again •  How – using PingAccess as an identity-enabled HTTP reverse proxy Copyright © 2014 Ping Identity Corp.All rights reserved. 4
Overview of PingAccess / Jenkins Deployment Confidential — do not distribute Copyright © 2014 Ping Identity Corp.All rights reserved. 5
Decomposing the PingAccess / Jenkins scenario Confidential — do not distribute Copyright © 2014 Ping Identity Corp.All rights reserved. 6 •  HTTP Reverse Proxy deployment, therefore Jenkins is a Site. •  Jenkins is comprised of several URLs that will be defined as Resources within an Application. •  Jenkins is equipped with a plugin[1] for authentication using HTTP Headers via a Reverse Proxy. This is accomplished using Identity Mappings. [1]https://wiki.jenkins-ci.org/display/JENKINS/Reverse+Proxy+Auth+Plugin
Jenkins Confidential — do not distribute Copyright © 2014 Ping Identity Corp.All rights reserved. 7
The PingAccess / Jenkins Deployment recipe Confidential — do not distribute Copyright © 2014 Ping Identity Corp.All rights reserved. 8 A Virtual Host, an Identity Mapping, an OpenID Connect Provider (PingFederate), a Web Session, a Site, and an Application. And a dash of PKI and Policy.
Securing the PingAccess / Jenkins Deployment Confidential — do not distribute Copyright © 2014 Ping Identity Corp.All rights reserved. 9

More Related Content

PDF
CIS14: Building a Plug-in with the PingAccess SDK
byCloudIDSummit
 
PPTX
Managing Identities in the World of APIs
byApigee | Google Cloud
 
PDF
CIS 2015 Session Management at Scale - Scott Tomilson & Jamshid Khosravian
byCloudIDSummit
 
PPTX
API Security: Securing Digital Channels and Mobile Apps Against Hacks
byAkana
 
PDF
CIS 2015 SSO for Mobile and Web Apps Ashish Jain
byCloudIDSummit
 
PPTX
Deep-Dive: API Security in the Digital Age
byApigee | Google Cloud
 
PDF
The Case For Next Generation IAM
byPatrick Harding
 
PPTX
Gateway/APIC security
byShiu-Fun Poon
 
CIS14: Building a Plug-in with the PingAccess SDK
byCloudIDSummit
 
Managing Identities in the World of APIs
byApigee | Google Cloud
 
CIS 2015 Session Management at Scale - Scott Tomilson & Jamshid Khosravian
byCloudIDSummit
 
API Security: Securing Digital Channels and Mobile Apps Against Hacks
byAkana
 
CIS 2015 SSO for Mobile and Web Apps Ashish Jain
byCloudIDSummit
 
Deep-Dive: API Security in the Digital Age
byApigee | Google Cloud
 
The Case For Next Generation IAM
byPatrick Harding
 
Gateway/APIC security
byShiu-Fun Poon
 

What's hot

PPTX
Deconstructing API Security
byAkana
 
ODP
Security components in mule esb
byhimajareddys
 
PPTX
Data-driven Security: Protect APIs from Adaptive Threats
byApigee | Google Cloud
 
PDF
Token vs Cookies (DevoxxMA 2015)
byMarkus Schlichting
 
ODP
Security in mulesoft
byakshay yeluru
 
PPTX
apidays LIVE India - 10 steps to secure your API by Pabitra Kumar Sahoo, Qual...
byapidays
 
PPTX
Protecting APIs from Mobile Threats- Beyond Oauth
byApigee | Google Cloud
 
PDF
How to integration DataPower with Zos
byShiu-Fun Poon
 
PDF
WSO2Con ASIA 2016: An Introduction to the WSO2 Integration Platform
byWSO2
 
PDF
API Security In Cloud Native Era
byWSO2
 
PPTX
API Security and Management Best Practices
byCA API Management
 
PPTX
DevOps & Apps - Building and Operating Successful Mobile Apps
byApigee | Google Cloud
 
PDF
Microservices security CSA meetup ppt 10_21_2015_v2-2
byVishwas Manral
 
PPTX
OAuth - Don’t Throw the Baby Out with the Bathwater
byApigee | Google Cloud
 
PDF
WSO2Con EU 2016: Securing APIs: How, What, Why, When
byWSO2
 
PDF
WSO2Con ASIA 2016: Case Study: Identity in the WSO2 Ecosystem
byWSO2
 
PPTX
API Services: Building State-of-the-Art APIs
byApigee | Google Cloud
 
PDF
Architecting SaaS
byAxEdge Consulting
 
PDF
How Secure Are Your APIs?
byApigee | Google Cloud
 
PDF
Aruba Networks - Overview ClearPass
byPaulo Eduardo Sibalde
 
Deconstructing API Security
byAkana
 
Security components in mule esb
byhimajareddys
 
Data-driven Security: Protect APIs from Adaptive Threats
byApigee | Google Cloud
 
Token vs Cookies (DevoxxMA 2015)
byMarkus Schlichting
 
Security in mulesoft
byakshay yeluru
 
apidays LIVE India - 10 steps to secure your API by Pabitra Kumar Sahoo, Qual...
byapidays
 
Protecting APIs from Mobile Threats- Beyond Oauth
byApigee | Google Cloud
 
How to integration DataPower with Zos
byShiu-Fun Poon
 
WSO2Con ASIA 2016: An Introduction to the WSO2 Integration Platform
byWSO2
 
API Security In Cloud Native Era
byWSO2
 
API Security and Management Best Practices
byCA API Management
 
DevOps & Apps - Building and Operating Successful Mobile Apps
byApigee | Google Cloud
 
Microservices security CSA meetup ppt 10_21_2015_v2-2
byVishwas Manral
 
OAuth - Don’t Throw the Baby Out with the Bathwater
byApigee | Google Cloud
 
WSO2Con EU 2016: Securing APIs: How, What, Why, When
byWSO2
 
WSO2Con ASIA 2016: Case Study: Identity in the WSO2 Ecosystem
byWSO2
 
API Services: Building State-of-the-Art APIs
byApigee | Google Cloud
 
Architecting SaaS
byAxEdge Consulting
 
How Secure Are Your APIs?
byApigee | Google Cloud
 
Aruba Networks - Overview ClearPass
byPaulo Eduardo Sibalde
 

Viewers also liked

PDF
CIS14: PingAccess 101
byCloudIDSummit
 
PPTX
Identity Access Management 101
byOneLogin
 
PDF
CIS13: How IAM Improved Sallie Mae's Compliance and Risk Posture
byCloudIDSummit
 
PPTX
Identity Management: Front and Center for Healthcare Providers
byAndrew Ames
 
PDF
Cloud identity management meetup 150108
byMorteza Ansari
 
PPTX
Web access management using o auth2 and saml – wam 2.0
byGluu
 
PDF
OpenID Overview - Seoul July 2007
byDavid Recordon
 
PPT
Uk french national id card presentation
bySaiful Chowdhury
 
PPT
Web Access Management
byMolly Knapp
 
PPT
Introduction to Research Methods
byMolly Knapp
 
PDF
CIS 2015 Modernize IAM with UnboundID and Ping Identity - Terry Sigle & B. Al...
byCloudIDSummit
 
PDF
Workshop on Identity & Access Management.
bycisoplatform
 
KEY
OpenID vs OAuth - Identity on the Web
byRichard Metzler
 
PPTX
Presentation gdpr ahti
bySofie van der Meulen
 
PPTX
Identity Management: Tools, processes & services
byJISC Netskills
 
PDF
Helping Utilities with Cybersecurity Preparedness: The C2M2
bySmart Grid Interoperability Panel
 
PDF
Access Management for Cloud and Mobile
byForgeRock
 
PDF
Identity and Entitlement Management Concepts
byWSO2
 
PDF
Landscape of Web Identity Management
byFraunhofer AISEC
 
PPTX
Sailpoint Training | Best Sailpoint IdentityIQ Online Course -GOT
byGlobal Online Trinings
 
CIS14: PingAccess 101
byCloudIDSummit
 
Identity Access Management 101
byOneLogin
 
CIS13: How IAM Improved Sallie Mae's Compliance and Risk Posture
byCloudIDSummit
 
Identity Management: Front and Center for Healthcare Providers
byAndrew Ames
 
Cloud identity management meetup 150108
byMorteza Ansari
 
Web access management using o auth2 and saml – wam 2.0
byGluu
 
OpenID Overview - Seoul July 2007
byDavid Recordon
 
Uk french national id card presentation
bySaiful Chowdhury
 
Web Access Management
byMolly Knapp
 
Introduction to Research Methods
byMolly Knapp
 
CIS 2015 Modernize IAM with UnboundID and Ping Identity - Terry Sigle & B. Al...
byCloudIDSummit
 
Workshop on Identity & Access Management.
bycisoplatform
 
OpenID vs OAuth - Identity on the Web
byRichard Metzler
 
Presentation gdpr ahti
bySofie van der Meulen
 
Identity Management: Tools, processes & services
byJISC Netskills
 
Helping Utilities with Cybersecurity Preparedness: The C2M2
bySmart Grid Interoperability Panel
 
Access Management for Cloud and Mobile
byForgeRock
 
Identity and Entitlement Management Concepts
byWSO2
 
Landscape of Web Identity Management
byFraunhofer AISEC
 
Sailpoint Training | Best Sailpoint IdentityIQ Online Course -GOT
byGlobal Online Trinings
 

Similar to CIS14: PingAccess in Action

PDF
LasCon 2014 DevOoops
byChris Gates
 
PPTX
Build Time Hacking
byMohammed Tanveer
 
PPT
Unix Web servers and FireWall
bywebhostingguy
 
PPT
Unix Web servers and FireWall
bywebhostingguy
 
PPTX
Plnog13 2014 security intelligence_pkedra_v1
byPROIDEA
 
DOC
Days of the Honeynet: Attacks, Tools, Incidents
byAnton Chuvakin
 
PPTX
Devoops: DoJ Annual Cybersecurity Training Symposium Edition 2015
byChris Gates
 
PDF
Next Generation Security
byCisco Canada
 
PDF
Road to Opscon (Pisa '15) - DevOoops
byGianluca Varisco
 
PPTX
Intro to Pentesting Jenkins
byBrian Hysell
 
PDF
Linux Servers
byRanjith Siji
 
PDF
DevOops & How I hacked you DevopsDays DC June 2015
byChris Gates
 
PDF
Gianluca Varisco - DevOoops (Increase awareness around DevOps infra security)
byCodemotion
 
LasCon 2014 DevOoops
byChris Gates
 
Build Time Hacking
byMohammed Tanveer
 
Unix Web servers and FireWall
bywebhostingguy
 
Unix Web servers and FireWall
bywebhostingguy
 
Plnog13 2014 security intelligence_pkedra_v1
byPROIDEA
 
Days of the Honeynet: Attacks, Tools, Incidents
byAnton Chuvakin
 
Devoops: DoJ Annual Cybersecurity Training Symposium Edition 2015
byChris Gates
 
Next Generation Security
byCisco Canada
 
Road to Opscon (Pisa '15) - DevOoops
byGianluca Varisco
 
Intro to Pentesting Jenkins
byBrian Hysell
 
Linux Servers
byRanjith Siji
 
DevOops & How I hacked you DevopsDays DC June 2015
byChris Gates
 
Gianluca Varisco - DevOoops (Increase awareness around DevOps infra security)
byCodemotion
 

More from CloudIDSummit

PPTX
CIS 2016 Content Highlights
byCloudIDSummit
 
PPTX
Top 6 Reasons You Should Attend Cloud Identity Summit 2016
byCloudIDSummit
 
PDF
CIS 2015 Security Without Borders: Taming the Cloud and Mobile Frontier - And...
byCloudIDSummit
 
PDF
Mobile security, identity & authentication reasons for optimism 20150607 v2
byCloudIDSummit
 
PDF
CIS 2015 Mobile Security, Identity & Authentication: Reasons for Optimism - R...
byCloudIDSummit
 
PDF
CIS 2015 Virtual Identity: The Vision, Challenges and Experiences in Driving ...
byCloudIDSummit
 
PDF
CIS 2015 Deploying Strong Authentication to a Global Enterprise: A Comedy in ...
byCloudIDSummit
 
PDF
CIS 2015 Without Great Security, Digital Identity is Not Worth the Electrons ...
byCloudIDSummit
 
PDF
CIS 2015 Mergers & Acquisitions in a Cloud Enabled World - Brian Puhl
byCloudIDSummit
 
PDF
CIS 2015 IoT and IDM in your Mobile Enterprise - Brian Katz
byCloudIDSummit
 
PDF
CIS 2015 Practical Deployments Enterprise Cloud Access Management Platform - ...
byCloudIDSummit
 
PDF
CIS 2015 What I Learned From Pitching IAM To My CIO - Steve Tout
byCloudIDSummit
 
PDF
CIS 2015 How to secure the Internet of Things? Hannes Tschofenig
byCloudIDSummit
 
PDF
CIS 2015 The IDaaS Dating Game - Sean Deuby
byCloudIDSummit
 
PDF
The Industrial Internet, the Identity of Everything and the Industrial Enterp...
byCloudIDSummit
 
PDF
CIS 2015 SAML-IN / SAML-OUT - Scott Tomilson & John Dasilva
byCloudIDSummit
 
PDF
CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva
byCloudIDSummit
 
PDF
CIS 2015 Identity Relationship Management in the Internet of Things
byCloudIDSummit
 
PDF
CIS 2015 The Ethics of Personal Data - Robin Wilton
byCloudIDSummit
 
PDF
CIS 2015 What’s next? Discovery, Dynamic Registration, Mobile Connect and mor...
byCloudIDSummit
 
CIS 2016 Content Highlights
byCloudIDSummit
 
Top 6 Reasons You Should Attend Cloud Identity Summit 2016
byCloudIDSummit
 
CIS 2015 Security Without Borders: Taming the Cloud and Mobile Frontier - And...
byCloudIDSummit
 
Mobile security, identity & authentication reasons for optimism 20150607 v2
byCloudIDSummit
 
CIS 2015 Mobile Security, Identity & Authentication: Reasons for Optimism - R...
byCloudIDSummit
 
CIS 2015 Virtual Identity: The Vision, Challenges and Experiences in Driving ...
byCloudIDSummit
 
CIS 2015 Deploying Strong Authentication to a Global Enterprise: A Comedy in ...
byCloudIDSummit
 
CIS 2015 Without Great Security, Digital Identity is Not Worth the Electrons ...
byCloudIDSummit
 
CIS 2015 Mergers & Acquisitions in a Cloud Enabled World - Brian Puhl
byCloudIDSummit
 
CIS 2015 IoT and IDM in your Mobile Enterprise - Brian Katz
byCloudIDSummit
 
CIS 2015 Practical Deployments Enterprise Cloud Access Management Platform - ...
byCloudIDSummit
 
CIS 2015 What I Learned From Pitching IAM To My CIO - Steve Tout
byCloudIDSummit
 
CIS 2015 How to secure the Internet of Things? Hannes Tschofenig
byCloudIDSummit
 
CIS 2015 The IDaaS Dating Game - Sean Deuby
byCloudIDSummit
 
The Industrial Internet, the Identity of Everything and the Industrial Enterp...
byCloudIDSummit
 
CIS 2015 SAML-IN / SAML-OUT - Scott Tomilson & John Dasilva
byCloudIDSummit
 
CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva
byCloudIDSummit
 
CIS 2015 Identity Relationship Management in the Internet of Things
byCloudIDSummit
 
CIS 2015 The Ethics of Personal Data - Robin Wilton
byCloudIDSummit
 
CIS 2015 What’s next? Discovery, Dynamic Registration, Mobile Connect and mor...
byCloudIDSummit
 

Recently uploaded

PDF
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
PDF
Python Automation in Action: Real-World Use Cases and Practical Implementation
byDenys Smirnov
 
PPTX
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
PPTX
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
PDF
Self-Correction Failure Diagnostic: Detecting Drift in Complex Systems
bySystems Research Group
 
PPTX
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
PDF
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
PDF
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 
PPTX
Beyond the Algorithm: Designing Human-Centric Public Service with AI
byAlan Dix
 
PPTX
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
PDF
GenerationAI Paris 2025 | How Agentic AI is Reinventing Organizations
byapidays
 
PDF
How to Install XRDP on CentOS 10 .pdf
byGreen Webpage
 
PPTX
apidays Paris 2025 | Integration is Feminist: Building Peace in Distributed S...
byapidays
 
PDF
Rustici Software: eLearning standards in the age of AI
byRustici Software
 
PDF
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
PPTX
How Does an ICO Launchpad Work Step-by-Step Breakdown.pptx
byTom Hardy S
 
PDF
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
PPTX
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
PDF
Transcript: Escape from the Forbidden Zone: Smuggling green and inclusive tec...
byBookNet Canada
 
PDF
TravelTech Paris 2025 | The EU Digital Identity Wallet and it’s impact on Tra...
byapidays
 
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
Python Automation in Action: Real-World Use Cases and Practical Implementation
byDenys Smirnov
 
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
Self-Correction Failure Diagnostic: Detecting Drift in Complex Systems
bySystems Research Group
 
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 
Beyond the Algorithm: Designing Human-Centric Public Service with AI
byAlan Dix
 
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
GenerationAI Paris 2025 | How Agentic AI is Reinventing Organizations
byapidays
 
How to Install XRDP on CentOS 10 .pdf
byGreen Webpage
 
apidays Paris 2025 | Integration is Feminist: Building Peace in Distributed S...
byapidays
 
Rustici Software: eLearning standards in the age of AI
byRustici Software
 
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
How Does an ICO Launchpad Work Step-by-Step Breakdown.pptx
byTom Hardy S
 
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
Transcript: Escape from the Forbidden Zone: Smuggling green and inclusive tec...
byBookNet Canada
 
TravelTech Paris 2025 | The EU Digital Identity Wallet and it’s impact on Tra...
byapidays
 

CIS14: PingAccess in Action

  • 2.
    PINGACCESS IN ACTION PeterMotykowski Sr. Product Engineering Manager Copyright © 2014 Ping Identity Corp.All rights reserved. 2
  • 3.
    Web & APIAccess Management Confidential — do not distribute Copyright © 2014 Ping Identity Corp.All rights reserved. 3
  • 4.
    The 5Ws Confidential —do not distribute •  Who – users of Jenkins, the continuous integration server •  What – Jenkins and PingAccess, PingFederate •  When – live! •  Where – localhost, because WiFi is unreliable •  Why – because we’re tired of signing-in, again •  How – using PingAccess as an identity-enabled HTTP reverse proxy Copyright © 2014 Ping Identity Corp.All rights reserved. 4
  • 5.
    Overview of PingAccess/ Jenkins Deployment Confidential — do not distribute Copyright © 2014 Ping Identity Corp.All rights reserved. 5
  • 6.
    Decomposing the PingAccess/ Jenkins scenario Confidential — do not distribute Copyright © 2014 Ping Identity Corp.All rights reserved. 6 •  HTTP Reverse Proxy deployment, therefore Jenkins is a Site. •  Jenkins is comprised of several URLs that will be defined as Resources within an Application. •  Jenkins is equipped with a plugin[1] for authentication using HTTP Headers via a Reverse Proxy. This is accomplished using Identity Mappings. [1]https://wiki.jenkins-ci.org/display/JENKINS/Reverse+Proxy+Auth+Plugin
  • 7.
    Jenkins Confidential — donot distribute Copyright © 2014 Ping Identity Corp.All rights reserved. 7
  • 8.
    The PingAccess /Jenkins Deployment recipe Confidential — do not distribute Copyright © 2014 Ping Identity Corp.All rights reserved. 8 A Virtual Host, an Identity Mapping, an OpenID Connect Provider (PingFederate), a Web Session, a Site, and an Application. And a dash of PKI and Policy.
  • 9.
    Securing the PingAccess/ Jenkins Deployment Confidential — do not distribute Copyright © 2014 Ping Identity Corp.All rights reserved. 9