Manage Authentication on StreamNative Cloud

StreamNative Cloud offers multiple authentication methods to ensure secure access to your resources. This includes managing user accounts and workload identities, which encompass service accounts, API keys, and identity providers (OIDC and mTLS).

User accounts

User accounts are the primary means of authentication for individuals accessing StreamNative Cloud resources. These accounts can be managed through the StreamNative Cloud Console or snctl, where administrators can invite users, assign roles, and manage permissions. User accounts can also be integrated with Single Sign-On (SSO) providers for enhanced security and convenience.

See Manage User Accounts for more details.

Service accounts

Service accounts represent applications or services that need to access StreamNative Cloud resources programmatically. They are not tied to individual users, making them ideal for automated workflows and integrations. Service accounts can own API keys and have specific permissions assigned through ACLs or role bindings.

See Manage Service Accounts for more details.

API Keys

API Keys are used to authenticate service accounts to StreamNative Cloud components and resources. Each API key is a JWT compliant token that contains the service account's identity and credentials, and can be scoped to specific StreamNative Cloud resources. API keys can be managed using StreamNative Cloud Console, snctl, or the StreamNative Cloud API.

See Manage API Keys for more details.

Identity providers

Identity providers enable applications and services to authenticate to StreamNative Cloud using external identity providers.

Available identity providers

StreamNative Cloud supports the following identity providers:

• Use OAuth/OIDC to Authenticate to StreamNative Cloud
• Use Mutual TLS (mTLS) to Authenticate to StreamNative Cloud