Difficulty: Intermediate
Estimated Time: 5 minutes

image

We are going to implement OPA policy for the situation when our focus is drawn for "encrypted" under the parameters field to be "true" for successful implementation of the StorageClass. Thus is ensures that StorageClass in encrypted.

In this scenario,we learned how to ensure that the StorageClass in use is encrypted.

Check out more on this usecase- Required Encryption in Storage Class

For more OPA Gatekeeper use-cases do check - Master writeup of OPA Usecases

Required "Encryption" StorageClasses

Step 1 of 4

Reason

A privileged container is allowed to access to all the devices on the host with the same privileges of the process running on the host. Just in order to prevent the abuse of privilege mode we are making the policy for denying the privilege containers.