Kubernetes Security Concepts: Difference between revisions

From NovaOrdis Knowledge Base
Jump to navigation Jump to search
Line 2: Line 2:


* [[Kubernetes_Concepts#Subjects|Kubernetes Concepts]]
* [[Kubernetes_Concepts#Subjects|Kubernetes Concepts]]
=Transport Security=
* https://kubernetes.io/docs/reference/access-authn-authz/#transport-security


=Service Account=
=Service Account=

Revision as of 18:47, 28 August 2019

Internal

Transport Security

Service Account

A service account provides an identity for processes that run in a Pod.

TODO:

Role Based Access Control (RBAC)

In Kubernetes, granting a role to an application-specific service account is a best practice to ensure that the application is operated in a specified scope. TODO: https://kubernetes.io/docs/reference/access-authn-authz/rbac/#service-account-permissions.

Retrieved from "https://kb.novaordis.com/index.php?title=Kubernetes_Security_Concepts&oldid=60513"