Start using the Terraform platform of the future.
New Features
August 18, 2022
Introducing Scalr's "Break the Glass" Feature: Ensuring Emergency Access for Administrators
By
Alistair Heys
In today's fast-paced world, ensuring uninterrupted access to critical systems is of paramount importance. That's why Scalr is excited to announce its new "Break the Glass" feature, designed specifically for administrators to tackle emergencies head-on.
The "Break the Glass" feature allows selected users to bypass the regular Single Sign-On (SSO) process and log in directly using their administrator credentials. By being exempt from the IDP login restrictions, these privileged users can swiftly address any emergencies that may arise, ensuring minimal disruption to your operations.
Implementing best practices for the "Break the Glass" feature is crucial to harness its full potential. Here are a few guidelines to ensure effective usage:
- Configuration with Care: The user responsible for configuring the SSO should be included in the "break the glass" list. This inclusion ensures that in case of any misconfigurations, such as accidental lockouts, you have a failsafe mechanism to regain access and rectify the issue promptly.
- Preparedness for IDP Downtime: IDP providers occasionally experience downtime or encounter configuration issues, such as expired SAML certificates. During these scenarios, regular users may face login restrictions. Having designated "break the glass" users enables uninterrupted access, empowering them to update configurations or perform critical actions even when the IDP is down.
- Secure Emergency Access: While the "break the glass" feature provides essential emergency access, it's important to exercise caution when granting these privileges. Limit the number of users on the list to only those who truly require this level of access. Additionally, ensure that the accounts associated with these users have robust security measures in place, such as strong passwords and multi-factor authentication.
With Scalr's "Break the Glass" feature, you can safeguard your organization against unforeseen disruptions and maintain operational continuity. Be prepared for any eventuality by incorporating these best practices into your emergency access strategy.
To learn more about this feature and how Scalr can empower your organization, sign up today!
Note: While this blog references Terraform, everything mentioned in here also applies to OpenTofu. New to OpenTofu? It is a fork of Terraform 1.5.7 as a result of the license change from MPL to BUSL by HashiCorp. OpenTofu is an open-source alternative to Terraform that is governed by the Linux Foundation. All features available in Terraform 1.5.7 or earlier are also available in OpenTofu. Find out the history of OpenTofu here.
