Additional Virtualization Discussions

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Additional Virtualization Discussions

Ask a Question

Security and Multi-Tenancy Concerns

RakutenStorage
Tuesday
70 Views

Hi Team, In our Kubernetes (K8s) environment, each application team is assigned their own namespace, and they deploy their own pods within it. While testing the NetApp Trident integration, we observed the following and would appreciate your feedback on how we can address these concerns:

  1. Tenant A provisions a PersistentVolumeClaim (PVC) named pvc1.
  2. How does the system ensure that Tenant B cannot access pvc1 or its underlying PersistentVolume (PV)?
  3. What security mechanisms are in place (e.g., namespace isolation, RBAC, storage-level encryption, etc.) to enforce tenant isolation and prevent unauthorized access?
  4. Are there any best practices to enhance security in a multi-tenant Kubernetes environment using NetApp Trident?

 

In our current setup, PVCs are namespace-scoped, and each application team has access only to their respective namespace. Looking forward to your input.
Thanks

0 Kudos
View By:
2 REPLIES 2

chamfer
yesterday
31 Views

Hi @RakutenStorage,

 

Referencing the below diagram and the URL here Architecture which depicts ONTAP w/ Trident w/ OpenShift (understanding there are differences to standard K8s).

 

Q2: How does the system ensure that Tenant B cannot access pvc1 or its underlying PersistentVolume (PV)?

 

A2: SVM isolation between tenants

 

Q3: What security mechanisms are in place (e.g., namespace isolation, RBAC, storage-level encryption, etc.) to enforce tenant isolation and prevent unauthorized access?

 

A3: SVM isolation and K8s Kubernetes Storage Resource Quotas.  You could have SVMs on different aggregates with aggregate encryption keys.    Per volume encryption via NVE is supported with Trident.

 

Note:

  • If NAE (NetApp Aggregate Encryption) is enabled on the backend, any volume provisioned in Trident will be NAE-enabled.

    • You can set the NVE encryption flag to "" to create NAE-enabled volumes.

  • If NAE is not enabled on the backend, any volume provisioned in Trident will be NVE-enabled (NetApp Volume Encryption) unless the NVE encryption flag is set to false (the default value) in the backend configuration.

  • Reference Security

 

Q4: Are there any best practices to enhance security in a multi-tenant Kubernetes environment using NetApp Trident?

 

A4: Yes, refer to here Security

 

 

redhat-openshift-040.png

0 Kudos

RakutenStorage
yesterday
In response to chamfer
22 Views

Hi Chamfer
In our environment, we have a Kubernetes (K8s) cluster that is used by different application teams. Each application team has a Namespace administrator. On the NetApp side, we cannot create multiple SVMs for each application team.
Hence, the above approach will not be applicable to us.

0 Kudos
All Community Forums
Public