LinkedIn and 3rd parties use essential and non-essential cookies to provide, secure, analyze and improve our Services, and to show you relevant ads (including professional and job ads) on and off LinkedIn. Learn more in our Cookie Policy.

Select Accept to consent or Reject to decline non-essential cookies for this use. You can update your choices at any time in your settings.

Start free trial Sign in

From the course: Kubernetes and Cloud Native Security Associate (KCSA) Cert Prep

Unlock the full course today

Join today to access over 24,700 courses taught by industry experts.

Authorization

Authorization

From the course: Kubernetes and Cloud Native Security Associate (KCSA) Cert Prep

Start my 1-month free trial Buy for my team

Authorization

“

All right. So much like authentication, authorization is the same across the board. Now whether it's for Kubernetes, the cloud, or virtual environment, it's all about what permissions you have on the system. In this case, Kubernetes being the system. Now, can you create pods or just list them? Can you create secrets? Do you have access to etcd? It's all about what you can do on the cluster. And you'll see this called authorization, permissions, and RBAC. It all kind of means the same thing. And your kubeconfig holds the keys that state what permissions you have access to. Your kubeconfig holds the keys to the castle, whatever authentication you have, whatever authorization you have. Based on that authentication is what's ultimately available to you. So let's pop over to VS Code here really quick. All right. So as we can see here, I have a service account. And we're just going to go ahead and we're going to create that service account. Kubectl create sa podcreator, okay? And now I can…

Contents