Demonstrates how to secure the mesh.
- Basic Authentication Policy. Shows you how to use Istio authentication policy to setup mutual TLS and basic end-user authentication.
- Testing mutual TLS. Shows you how to verify and test Istio's automatic mutual TLS authentication.
- Basic Access Control. Shows how to control access to a service using the Kubernetes labels.
- Secure Access Control. Shows how to securely control access to a service using service accounts.
- Role-Based Access Control. Shows how to set up role-based access control for services in Istio mesh.
- Per-service mutual TLS authentication control. Shows how to change mutual TLS authentication for a single service.
- Plugging in external CA key and certificate. Shows how operators can configure Citadel with existing root certificate, signing certificate and key.
- Citadel health checking. Shows how to enable Citadel health checking with Kubernetes.
- Mutual TLS over HTTPS. Shows how to enable mTLS on HTTPS services.