Gateway Authentication Use Cases
Authentication Using Environment Variables
The standalone installation of the Akeyless Gateway allows for the following authorization use cases:
Use Case | Options |
|---|---|
Single Gateway Admin Auth method: email/password |
|
Single Gateway Admin Auth method: API Key | You can set Admin credentials directly by installing the Gateway with environment variables:
|
NOTE
You cannot combine these environment variables with the
ALLOWED_ACCESS_IDSvariable.
Use Case | Options |
|---|---|
Multiple Gateway Admins Auth methods: email/password, API Keys, etc. | Install the Gateway with the environment variable:
When using this variable, you still have an option to set email/password as one of the authentication methods for this Gateway instance - but only at the first login. |
IMPORTANT
When you use the
ALLOWED_ACCESS_IDSvariable to set up access to your Gateway using a shared authentication method, you must provide relevant sub-claims.Otherwise, all users authenticated by the Identity Provider with a given
access-idwill be able to log in to your Gateway and configure it.
NOTE
You cannot combine this environment variable with variables that set Admin credentials directly (
ADMIN_ACCESS_ID,ADMIN_PASSWORD,ADMIN_ACCESS_KEY).You cannot specify an
SAML & OIDC Authentication
If you need to set up either SAML or OIDC Authentication for your Gateway Console, take the following steps:
-
First, you need to create Access IDs for those authentication methods as described in the documentation:
-
Then you need to open the Gateway Configuration Manager at http://Your-Akeyless-Gateway-URL:8000, and on the Defaults page provide and save those Access IDs.
SAML & OIDC Authentication Setup
Updated 4 days ago