Type
New feature
Description
Be able to limit access to cloud instances based on cloud resource information
Benefit
Access control being real-time to the resources in your cloud. If you want to limit Bob to some subset of ec2 instances in AWS for ssh access. Instead of give a subnet or setting specific ips. It becomes very useful if you could say Bob can access any resource that is tagged ‘type:dev’. That way instances can come and go but Bob is limited to only the cloud resources he needs at any given time, and at the same time he does not need to create support tickets to say can you give me access to X instance, then the CF admin needing to add a rule for that new IP address.