The Hidden Dangers of Defaults: Securing Multi-Tenant Argo CD Installations

This technical conference talk explores the critical security considerations for multi-tenant Argo CD installations. Delve into the potential vulnerabilities that arise from default configurations as Regina Voloshin from Codefresh by Octopus Deploy and Dag Bjerre Andersen from Doubble ApS provide a comprehensive security deep dive. Learn essential building blocks for establishing robust security controls, including Application Projects, security policies, and user roles. Discover best practices for implementing RBAC policies, restricting deployments to specific clusters and namespaces, and properly structuring Application Projects. Through practical real-world examples, gain valuable insights as an Argo CD administrator on how to securely configure installations, effectively manage permissions, and customize environments to meet organizational requirements without sacrificing usability or productivity. The 24-minute presentation also offers strategies to avoid common permission management pitfalls in cloud native environments.