September 28, 2018 | DevOps | Chris Smith
We’re excited to announce that CyberArk Conjur Open Source is now available as an AMI (Amazon Machine Image) on Amazon Web Services (AWS) Marketplace. Conjur Open Source is a powerful secrets management solution tailored specifically to the unique infrastructure requirements of native cloud, container and DevOps environments.
The availability of Conjur Open Source further expands CyberArk’s offering on AWS Marketplace, which already includes the CyberArk Privileged Access Security Solution.
Integration with AWS IAM Improves Security
Conjur offers powerful integrations with AWS. For example, Conjur can improve AWS workload security by utilizing the native capabilities of AWS Identity and Access Management (IAM) roles for strong authentication and Conjur for policy-based authorization. Since Conjur-defined policies can be applied to pre-defined AWS IAM roles, this approach enables developers and security teams to avoid redoing work, which can slow down the development process. Conjur can authenticate to any of the AWS Principles, including AWS Elastic Compute Cloud (EC2), AWS Elastic Container Service (ECS) instances and AWS Auto Scaling and Lambda functions. As a result, organizations using both AWS and CyberArk can manage access policies more securely across AWS, hybrid, multi-cloud and CI/CD pipelines.
Centralized Solution that Avoids the Limitations of Native Platforms and Tools
Conjur is designed to provide a centralized solution for secrets management, which helps developers to easily and consistently protect secrets, keys, certificates, and authentication data across the CI/CD pipeline, regardless of the varying capabilities of the underlying native tools and environments. Conjur Open Source integrates natively with leading container environments and native tools, including Kubernetes, Red Hat OpenShift and Cloud Foundry, as well as Jenkins, Chef, Puppet and Ansible.
Conjur was designed with ease of use for developers in mind. Its capabilities include machine identity, and policy as code, as well as powerful security features, such as centralized policy-based enforcement, segregation of duties, rotation and monitoring.
Easy to Start Securing Secrets
Conjur Open Source on AWS Marketplace gives developers an easy way to use Conjur to get hands-on experience removing and securing secrets from their code. For example, Conjur lets developers automatically secure secrets in code that uses environmental variables.
Flexible Upgrade to Enterprise-Class Capabilities
Conjur Open Source can be easily upgraded to Conjur Enterprise, which provides all the capabilities of Conjur Open Source plus full access to CyberArk support and can be integrated with the CyberArk Vault. Vault integration allows secrets and credentials managed by the CyberArk Vault to be automatically on-boarded to platforms integrated with Conjur, such as containers managed by Red Hat OpenShift or a Jenkins pipeline, enabling centralized policy-based rotation and audit across the enterprise.
Conjur Open Source is also available as a Kubernetes application on Google Cloud as well as on GitHub and other sites. For more information and tutorials on Conjur Open Source, visit Conjur.org and, for Conjur Enterprise, visit Cyberark.com/Conjur or contact CyberArk Sales.
To learn more about CyberArk support for the AWS community, visit https://www.Cyberark.com/aws/.