Ambassador Logo

Edge Stackright arrowAPI Gatewayright arrowSecurity and Authentication

Security and Authentication

The Ambassador Edge Stack makes securing microservices easy with a comprehensive set of security functionality, including automatic TLS, authentication, rate limiting, WAF integration, and fine-grained access control.

Get Started FreeGet a Demo

API Gateway Security and Authentication Features

Authentication

Secure access to your services and integrate with popular identity providers. Declare access control policies and control who has access to specific services.

Read the Docs:

Single Sign-On with OAuth/OIDC →

Session Management →

JWT Validation →

Multi-Domain Authentication →

Access Control →

WAF Integration

The Ambassador Edge Stack integrates with Signal Sciences Next-Gen WAF to screen for all incoming traffic at the cluster edge.

Read the Docs:

Signal Sciences and Ambassador →

Learn More:

Announcement →

Rate Limiting

Ensure your services remain available, even when under heavy load.

Read the Docs:

Global Rate Limiting →

Per-User Rate Limiting →

SNI and Automatic HTTPS

The Ambassador Edge Stack enables automatic TLS setup via ACME integration and serving multiple Hosts behind a single IP address, each with their own certificate.

Read the Docs:

Automatic HTTPS →

Server Name Indication (SNI) →

Custom Request Filters

Custom request filters allow you to execute custom logic in Filters. Inspect or validate an incoming request, and add custom Authorization headers.

Read the Docs:

Custom Request Filters →

Edge Stack Can Be Installed with Edge CTL Which Includes a Free TLS Tool

Set up automatic Kubernetes TLS on a unique domain in minutes.

Setting up Kubernetes TLS requires you to gain access to your organization's domain (which can take months) and manage ongoing certificates. Ambassador Edge Stack is the easiest way to get Kubernetes Ingress TLS configured. Edge Stack includes everything you need: a certificate manager, a certificate, and most importantly, a temporary domain pre-configured to get you up and running.

Automatic TLS with Kubernetes Ingress

Try It Now

Explore More API Gateway Features

Learn More About Security and Authentication

Thumbnail for resource: "Getting Edgy: What is kubectl?"
Video

Getting Edgy: What is kubectl?

Thumbnail for resource: "Step-by-Step Centralized Authentication for Kubernetes with Keycloak and the Ambassador Edge Stack"
Article

Step-by-Step Centralized Authentication for Kubernetes with Keycloak and the Ambassador Edge Stack

Thumbnail for resource: "Build vs. Buy: Should You Build an Authentication Solution on Your Own?"
Article

Build vs. Buy: Should You Build an Authentication Solution on Your Own?

Next Steps

The Ambassador API Gateway delivers the scalability, security, and simplicity for some of the world's largest Kubernetes installations.

Get Started FreeGet a Demo