User Access Control

User Access Control

Many users – including developers, administrators, DevOps and auditors – access containers at different stages of the pipeline. However, the default access controls are insufficient and not scalable. Aqua provides a fine-grained access control model that enforces access privileges at the container level from development to production, providing full accountability.

RBAC Policies

Define user access privileges according to role, allowing or preventing specific actions such as view, run, stop, view logs, and more.

Container-Level Granularity

Control which specific containers a user is allowed to view and access across your entire environment, even in multi-tenant setups.

Least Privilege Baseline

Enforces a ‘least privilege’ default even if no defined policies are in place, restricting containers’ admin access only to their owners.

Orchestration-Driven Policy

Derive user access privileges based on application definitions in your orchestration system.

Full User Accountability

Identify and trace the actual end-user identity behind the container account, with full audit trail and accountability.

Integrates with AD/LDAP

Derive roles and privileges from existing AD/LDAP groups, and authenticate users.
eBook for Security Pros
Five Things Security Pros Need to Know
About Containers
eBook for DevOps
Five Things DevOps Need to Know
About Securing Containers