This topic describes several options for securing a CDM deployment of the ForgeRock Identity Platform:
Kubernetes operator that generates secrets and provides cloud secret management.
Secure HTTP and certificate management.
IP Address Restriction
Access restriction by incoming IP address, enforced by the NGINX ingress controller.
Secure cross-pod communications, enforced by Kubernetes network policies.
Cluster Access on AWS
User entries in the Amazon EKS authorization configuration map.