Feature search
Which component would this feature affect?
Prowler CLI/SDK
Related to specific cloud provider?
Not provider-specific
New feature motivation
I would like to perform security scans on a self-hosted OpenStack environment. Currently, Prowler seems to rely on interactive user credentials (username/password). However, in my environment, authentication is managed via an IAM, which prevents the use of standard local user credentials.
Solution Proposed
Update the OpenStack provider in Prowler to support Application Credentials for authentication.
Use case and benefits
1)Enables seamless integration of Prowler into CI/CD pipelines for continuous security auditing of OpenStack projects 2)Encourages the "Principle of Least Privilege" by using application-specific credentials instead of sharing full user account passwords
3)Makes Prowler a viable tool for large-scale organizations that use federated identity (SSO) for their private cloud infrastructure.
Describe alternatives you've considered
I tried using application credentials as username and password, but doesn't work
Additional context
No response
Feature search
Which component would this feature affect?
Prowler CLI/SDK
Related to specific cloud provider?
Not provider-specific
New feature motivation
I would like to perform security scans on a self-hosted OpenStack environment. Currently, Prowler seems to rely on interactive user credentials (username/password). However, in my environment, authentication is managed via an IAM, which prevents the use of standard local user credentials.
Solution Proposed
Update the OpenStack provider in Prowler to support Application Credentials for authentication.
Use case and benefits
1)Enables seamless integration of Prowler into CI/CD pipelines for continuous security auditing of OpenStack projects 2)Encourages the "Principle of Least Privilege" by using application-specific credentials instead of sharing full user account passwords
3)Makes Prowler a viable tool for large-scale organizations that use federated identity (SSO) for their private cloud infrastructure.
Describe alternatives you've considered
I tried using application credentials as username and password, but doesn't work
Additional context
No response