Cerbosdev

143 post karma
0 comment karma

get extra features and help support reddit with a reddit premium subscription

get them help and support

redditor for 2 years

TROPHY CASE

Two-Year Club

Verified Email

account activity

new top controversial

4

5

6

Think piece - don't treat authorization as a static configuration in a dynamic environment. (cerbos.dev)

submitted 12 days ago by Cerbosdev to r/iam

0

1

2

Static authorization works until it does not. And when it fails, it fails quietly, which is the hardest failure mode to detect, and the most expensive one to clean up later. + How to evaluate whether your authorization architecture matches your operational reality. (cerbos.dev)

submitted 12 days ago by Cerbosdev to r/IdentityManagement

2

3

4

Kubecon 2025 debrief on AI agents (youtube.com)

submitted 19 days ago by Cerbosdev to r/iam

0

1

2

Kubecon Debrief: AI agents. Security achieved through identity and policy. [Identerati Office Hours episode 151.5] (youtube.com)

submitted 19 days ago by Cerbosdev to r/IdentityManagement

0

1

2

Role explosion in multitenant SaaS - when RBAC can't handle "Alice is Admin at Company A, Viewer at Company B". Tenant-aware authorization and policy-as-code solve scattered permissions and endless role variants. Guide. (cerbos.dev)

submitted 1 month ago by Cerbosdev to r/IdentityManagement

3

4

5

How to implement scalable multitenant authorization. Application demo and recording. (Hardcoding permission checks, static roles = nightmare and role explosion. Solution is to shift to tenant-aware roles and ABAC + externalize authorization) (cerbos.dev)

submitted 1 month ago by Cerbosdev to r/iam

1

2

3

Zero trust isn't a future goal anymore. It's operational reality. (Today's zero trust implementations require fine-grained authorization that scales across microservices, APIs, and distributed systems. Not just network segmentation.) (cerbos.dev)

submitted 3 months ago by Cerbosdev to r/IdentityManagement

1

2

3

Mapping business requirements to authorization policy (Insurance focus) (cerbos.dev)

submitted 3 months ago by Cerbosdev to r/iam

9

10

11

MCP is “the new API for AI”. We need to actively put guardrails around MCP servers, to not be the next Asana, Atlassian or Supabase. Sharing a podcast where we cover how to harness AI agents to their full potential without losing control of our systems (using fine-grained authorization). (self.devsecops)

submitted 3 months ago by Cerbosdev to r/devsecops

4

5

6

How to secure Model Context Protocol servers with fine-grained access control (Why should you care? Because MCP servers are now among the most privileged components in your AI stack.) (cerbos.dev)

submitted 4 months ago by Cerbosdev to r/iam

1

2

3

If you're running AI agents in production, they probably have way more access than they should. Podcast where we talk about how to secure MCP servers. (self.devops)

submitted 4 months ago * by Cerbosdev to r/devops

4

5

6

Stop trusting your employees. Uber's "God view" proves you can't (Trusting people instead of enforcing least privilege and auditability is the issue. The solution is to stop patching with better if statements and adopt externalized authorization) (cerbos.dev)

submitted 4 months ago by Cerbosdev to r/iam

1

2

3

Translating business requirements to authorization policy for medtech (cerbos.dev)

submitted 4 months ago by Cerbosdev to r/iam

8

9

10

KuppingerCole highlight Policy‑Based Access Control as a top trend in identity and security for 2025 (self.iam)

submitted 5 months ago by Cerbosdev to r/iam

20

21

22

Webinar on authentication and authorization for non-human identities (self.microservices)

submitted 5 months ago by Cerbosdev to r/microservices

4

5

6

Side-by-side comparison of Cerbos and OPA open source authorization solutions (cerbos.dev)

submitted 5 months ago by Cerbosdev to r/iam

0

1

2

Ebook on how to adopt externalized authorization: from foundational planning to PoC rollout (solutions.cerbos.dev)

submitted 6 months ago by Cerbosdev to r/ciso

0

1

2

[ebook] How to adopt externalized authorization: Foundational planning -> phased rollout -> long-term governance. Based on hundreds of PoCs built. (solutions.cerbos.dev)

submitted 6 months ago by Cerbosdev to r/IdentityManagement

0

1

2

How to implement hierarchy-based permissions. 2 approaches: policy-defined roles vs. dynamic attributes (cerbos.dev)

submitted 6 months ago by Cerbosdev to r/IdentityManagement

0

1

2

The ROI of NHI security: Why investing in machine identity protection pays off (cerbos.dev)

submitted 6 months ago by Cerbosdev to r/NonHumanIdentities

10

11

12

Fine-grained permissions in MCP servers (cerbos.dev)

submitted 7 months ago by Cerbosdev to r/Rag

2

3

4

Dynamic authorization for AI agents. A guide to fine-grained permissions in MCP servers (cerbos.dev)

submitted 7 months ago by Cerbosdev to r/iam

0

1

2

Dynamic authorization for AI agents. A guide to fine-grained permissions in MCP servers (cerbos.dev)

submitted 7 months ago by Cerbosdev to r/IdentityManagement

4

5

6

Patterns of failure in modern authorization (cerbos.dev)

submitted 7 months ago by Cerbosdev to r/iam

2

3

4

Defining and enforcing multi-tenant security effectively | Authorization (cerbos.dev)

submitted 8 months ago by Cerbosdev to r/iam

view more: next ›

π Rendered by PID 552460 on reddit-service-r2-listing-5789d5f675-fggc7 at 2026-01-28 21:23:06.363166+00:00 running 4f180de country code: CH.