Difficulty: beginner
Estimated Time: 15 minutes
  • Educational Objective
  • What You Need To Know Before You Start
  • Working with Kafka
  • Scenario Contents

IMPORTANT: You need to do the steps in sequence in order for the state of the lesson's learning environment to be consistent. Otherwise, you'll get behaviors that might be confusing.


Educational Objective

The objective of this scenario is to describe the basics of Kubernetes Role Based Access Control (RBAC). Also you'll learn how to use RBAC to create a user that has limited operational access only to particular Kubernetes API resources.

What You Need To Know Before You Start

In order to get full benefit from the concepts and tasks presented in this scenario you need to have basic understanding of how to enter commands in the Katacoda interactive learning environment. Each step has commands that can be entered into the interactive terminal automatically by clicking on the command.

There is no need to type directly into the terminal window. Clicking on a command will automatically execute it.

Scenario Contents

Step 1 - Cloning the Source Code from GitHub

Step 2 - Understanding the Theory Behind RBAC and Secure Access to Kubernetes

Step 3 - Understanding Subjects, Resources, and Operations in Kubernetes

Step 4 - Understanding Kubernetes Roles

Step 5 - Understanding Kubernetes RoleBindings

Step 6 - Configuring Role and RoleBindings Manifests

Step 7 - Reviewing the Certificate Creation Process

Step 8 - Creating the Security Certificates

Step 9 - Creating the Required Namespaces

Step 10 - Creating a Cluster Context for the New User

Step 11 - Creating Roles and RoleBindings for a User

Step 12 - Verifying RBAC

Step 13 - Creating Roles and RoleBindings for Groups

You've crossed the finish line!

In this scenario you learned about:

  • Cloning the Source Code from GitHub
  • Understanding the Theory Behind RBAC and Secure Sccess to Kubernetes
  • Understanding Subjects, Resources, and Operations in Kubernetes
  • Understanding Kubernetes Roles
  • Understanding Kubernetes RoleBindings
  • Configuring Role and RoleBinding Manifests
  • Reviewing the Certificate Creation Process
  • Creating the Security Certificates
  • Creating the Required Namespaces
  • Creating a Cluster Context for the New User
  • Creating Roles and RoleBindings for a User
  • Verifying RBAC
  • Creating Roles and RoleBindings for Groups

Understanding Kubernetes Role-Based Access Control (RBAC)

Step 1 of 13

Step 1 - Cloning the Source Code from GitHub

Step 1: Clone the source code from GitHub:

git clone https://github.com/reselbob/k8sassets.git

Step 2: Navigate to the directory, k8sassets/rbac. This directory contains the Kubernetes manifests that will be used in the steps that follow.

cd k8sassets/rbac

Next Up: Understanding the Theory Behind RBAC and Secure Access to Kubernetes