Roles

Overview

Supports viewing, creating, modifying, and deleting roles (Role) according to access permissions for Kubernetes clusters managed by the organization. Role is the step after Policy for implementing and applying Kubernetes access permissions, meaning a collection of Policies and permissions that serve as a link between users/groups and policies.

Administrator > Kubernetes > K8s Access Control > Roles

Viewing Roles

Administrator > Kubernetes > K8s Access Control > Roles > List Details

Navigate to Administrator > Kubernetes > K8s Access Control > Roles menu.
You can search by role name using the search box in the top left of the table.
You can refresh the Role list using the refresh button in the top right of the table.
The table provides the following column information:
1. Name : Role name
2. Description : Role detailed description
3. Last Access At : Last call date and time for the role
4. Created At : Role initial creation date and time
5. Updated At : Role last modification date and time
6. Updated By : Administrator name who performed the last update
Click on each row to view role detailed information.
1. Policies
2. This is the default tab where you can view the list of assigned policies.
3. The table list exposes the following information for each policy:
  1. Name : Policy name
  2. Description : Policy detailed description
  3. Version : Policy version
  4. Assigned At : Assignment date and time
  5. Assigned By : Administrator name who assigned the policy
4. Click on each policy row to provide detailed information about the policy in drawer format.
  1. Basic information is exposed at the top as follows:
    1. Name : Policy name
      - You can open the policy detailed page link in a new window.
    2. Description : Policy detailed description
    3. Version : Policy version
    4. Assigned At : Assignment date and time
    5. Assigned By : Administrator name who assigned the policy
  2. The policy is exposed as code at the bottom.
5. Users/Groups
  1. Lists the user/group list where the Role is granted.
  2. You can search by user/group name.
  3. The list exposes the following information for each user/group:
    1. User Type : User/group type
    2. Name : User/group name
    3. Last Access At : Last call date and time for the user/group
    4. Expiration Date : Expiration date
    5. Granted At : Date and time when the Role was granted to the user/group
6. Clusters
  1. Lists the Kubernetes cluster list accessible through the Role.
  2. You can search by cluster name.
  3. The list exposes the following information for each cluster:
    1. Name : Cluster name
    2. Version : Kubernetes version
    3. API URL : Cluster API URL
    4. Cloud Provider : Connected platform (displayed as hyphen for manual clusters)
    5. Tags : List of tags attached to the cluster
    6. Created At : Cluster initial creation date and time
    7. Updated At : Cluster last modification date and time

Creating Roles

Navigate to Administrator > Kubernetes > K8s Access Control > Roles menu.
Click the + Create Role button in the top right.
Enter the following information for role creation. (All information below is exposed to users.)
1. Name : Identifiable role name (required)
2. Description : Additional description of the role
Click the Save button to create.
Click the newly created role at the top of the role list.
Set policies by referring to the Kubernetes role setting guide.

Modifying Roles

Navigate to Administrator > Kubernetes > K8s Access Control > Roles menu.
Click on the Role to modify from the list to move to the detailed page.
Click the Edit button in the top right of the screen to modify the following information.
1. Name : Identifiable role name (required)
2. Description : Additional description of the role
Click the Save button to apply the modifications.

Deleting Roles

Navigate to Administrator > Kubernetes > K8s Access Control > Roles menu.
You can proceed with the deletion step in two ways:
1. Delete from list
  1. Check the checkbox on the left of the target policy to delete in the table.
  2. Click the Delete button that appears in the table column line.
2. Delete from detailed page
  1. Click the Delete button in the top right of the screen.
When a popup appears, click the Delete button to proceed with deletion.

When deleting a Role, permissions are revoked from users and groups where the role was granted.