Configure Kubernetes Roles

Overview

To manage user access to Kubernetes, we implement Role-Based Access Control (RBAC) within the organization specifically for Kubernetes roles. Roles are assigned to users or user groups, consolidating multiple policies into a unified role definition to enable or restrict access effectively.

Assigning Policies to Roles

1. Navigate to the Administrator > Kubernetes > K8s Access Control > Roles menu.

2. Click on the target role from the Roles list to open its detail page.

3. Click the + Assign Policies button on the right side of the Policies tab.

4. Review the policies available for assignment. Use the checkboxes on the left to select policies to assign.

   

   1. You can search policies by their names.

   2. Policies that are already assigned will have their checkboxes disabled.

   3. The list displays the following information for each policy:

      • Name : Policy name

        • Provides a modal link to view policy information

          

5. Click the Assign button to assign the selected policies to the role.

6. (Click Cancel to close the modal without making any changes.)

Unassigning Policies from Roles

1. Navigate to the Administrator > Kubernetes > K8s Access Control > Roles menu.

2. Click on the target role from the Roles list to open its detail page.

3. Select individual checkboxes or use the checkbox at the top of the list to select all from the Policies tab and click the Unassign button which will appear in the column bar.

   

4. In the confirmation dialog, click the Unassign button again to confirm. This action will remove the selected policies from the role, causing them to disappear from the list.

5. (Click Cancel in the confirmation dialog to close it without unassigning the policies.)

When you unassign a policy, all access permissions granted to users and groups through that policy will be revoked.