on any infrastructure. Feature SUSE Rancher OpenShift Tanzu Anthos Active Directory and LDAP Support 4 4 4 2 Pod and Network Security Policies 4 3 2 2 Configurable Adherence to and for Anthos on bare metal. 3.2 Security, Policy & User Management 3.2.1 Active Directory and LDAP Support • SUSE Rancher: 4 • OpenShift: 4 • Tanzu: 4 • Anthos: 2 3.2.1.1 SUSE Rancher proxies communication to multiple backend providers. It maintains compatibility with providers based on LDAP, Keystone, OpenID Connect and OAuth and it provides an interface for basic authentication and external

to members supported on web pages Authentication and authorization Integration with AD and LDAP supported; Identity providers supported, Built-in OAuth service for integration with multiple providers 12 including CAS, OIDC, and iDaaS; Service Account management supported including LDAP, Keystone, OpenID Connect, and OAuth supported, such as Keycloak and Okta Security Pod Security

Identity Policy / Governance Audit Dynamic Secrets Static Secrets (Versioned) Crypto as a Service LDAP/AD OIDC JWT Github MFA/Radius Okta AWS Azure GCP AliCloud Kubernetes Cloud Foundry AppRole Databases

your workload clusters. Rancher has the ability integrate with external authentication sources (LDAP, SAML, AD…) allows easy access with unique credentials to your existing users or groups. 1.6.2 -

access policies for their clusters can be managed through Rancher, as the platform integrates with LDAP, AD, and GitHub for authentication. Once the cluster is up, any number of hosts can be added and