Home > Blogs > Cloud-Native Apps

Introducing Project Lightwave, Identity and Access Management for Cloud-Native Apps


Here at VMware, we’ve recognized that containers, microservices, and DevOps – among other technologies and methodologies – are changing how modern applications are built, deployed, and managed. We’ve espoused our belief that VMs and containers are better together, and we continue streamlining application development for DevOps teams on our unified platform. Our sister company, Pivotal, has been working on containers with us for several years, and both VMware and Pivotal continue to support open standards in the community.

As enterprises begin building more microservices-based applications and using containers to do so, valid security questions start to appear. Businesses building cloud-native applications need to address security and governance from developer desktop to production stack. They require enterprise-grade identity and access management for an increasingly large volume and variety of objects across their hybrid clouds. And the solution to these challenges must support common standards and interoperability for business agility and choice.

As we talked to customers and partners, we realized that these questions present a real challenge for enterprises in building, deploying, and managing cloud-native applications. Today we introduce Project Lightwave to address those challenges. (Read the news release).

Lightwave is an open source project comprised of standards-based, enterprise-grade, identity and access management services targeting critical security, governance, and compliance challenges for cloud-native apps. The project’s code is tested and production-ready having been used in VMware’s solutions to secure distributed environments at scale. Here are a few of its features:

  • Multi-tenancy to simplify governance and compliance across the infrastructure and application stack and across all stages of application development lifecycle
  • Support for SASL, OAuth, SAML, LDAP v3, Kerberos, X.509, and WS-Trust
  • Extensible authentication and authorization using username and password, tokens and PKI infrastructure for users, computers, containers and user defined objects

Project Lightwave pairs well with Photon OS (which we also announced today), our lightweight Linux OS optimized for cloud-native applications, to provide an enforcement layer for identity and access management via VMware vSphere and vCloud Air.

We are open sourcing Lightwave to encourage collaboration with our customers and partners. Furthermore, we also want to assure that resulting innovation in Lightwave is ubiquitously available to end-users regardless of where they decide to deploy containers. We plan on releasing Lightwave in the coming months. Until then, we invite you to check out this video of Lightwave in action.

About the Author:

JohnnyFergusonJohnny Ferguson is the Product Line Manager for Lightwave and VMware Platform services for security, including single-sign-on, authentication, authorization, certificate management, directory services, and lookup services.