Provisioning Overview
Provisioning workload identity infrastructure that integrates with Cofide Connect can be done in several ways. It is helpful to break down the process into two steps.
Defining Resources in Connect API
Section titled “Defining Resources in Connect API”Cofide Connect API provides a central location for defining workload identity. It allows for the configuration of trust zones, clusters, federations, attestation policies, and more. There are numerous ways to interact with and manage resources in Connect:
- Connect Dashboard
- cofidectl, the OSS CLI
- Cofide Terraform provider
- Cofide API SDK
Some resources such as trust zones and clusters may be fairly static, while others such as attestation policies may be more dynamic and follow workload life cycles.
Provisioning Infrastructure to Clusters
Section titled “Provisioning Infrastructure to Clusters”Workload identity infrastructure that integrates with Cofide Connect can be deployed using several methods.
cofidectl provides a smooth user experience, integrating with Connect API and automating the deployment of SPIRE and Cofide Agent in a single command.
In environments where more control is required, the Cofide SPIRE Helm charts and Cofide Helm charts may be used.
cofidectl provides commands to help populate the Helm values for these charts based on the configuration in Connect.
© 2026 Cofide Limited. All rights reserved.