Credential and Identity Management

This section provides links to different aspects of identity management, including credential management handled by CredHub, user creation and permissions management, and authentication for Pivotal Cloud Foundry (PCF).

General Identity Management

The following topics provide general information about credential and identity management in PCF.

CredHub Documentation

CredHub provides centralized credential management in Pivotal Cloud Foundry (PCF). Credentials can include passwords, certificates, and SSH keys.

CredHub centralizes and secures credential generation, storage, lifecycle management, and system access.

For more information about CredHub, see the following topics.

UAA Documentation

PCF uses UAA to manage account roles and permissions in PCF runtimes. UAA supports access control as OAuth2 services and can store user information internally, or connect to external user stores through LDAP or SAML.

For more information about UAA, see the following topics.

PCF Roles and User Accounts

The following topics describe how to manage PCF roles and user accounts in PCF.

Ops Manager Roles and Permissions

PAS Roles and Permissions

This section provides links to Pivotal Application Service (PAS) roles and permissions documentation.

Create a pull request or raise an issue on the source for this page in GitHub