Chapter 8: RBAC Policies and Auditing

Authentication is only the first step in managing access in a cluster. Once access to a cluster is granted, it's important to limit what accounts can do, depending on whether an account is for an automated system or a user. Authorizing access to resources is an important part of both protecting against accidental issues and bad actors looking to abuse a cluster.

In this chapter, we're going to detail how Kubernetes authorizes access via its Role-Based Access Control (RBAC) model. The first part of this chapter will be a deep dive into how Kubernetes RBAC is configured, what options are available, and mapping the theory into practical examples. Debugging and troubleshooting RBAC policies will be the focus ...

Get Kubernetes and Docker - An Enterprise Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Kubernetes and Docker - An Enterprise Guide by Scott Surovich, Marc Boorshtein

Chapter 8: RBAC Policies and Auditing

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly