Kubernetes Deep Dive Room

Sign Up Free or Log In to participate!

RBAC assigns users and permissions to roles

Disclaimer: I work in infosec and just spent a couple of years neck-deep in identity and access management, so this is very likely be a nit-pick. RBAC is of course role-based access control, and it’s the roles that get the permissions, not the users. When Nigel says "which users can perform what actions on which resources" I cringe a bit, because it’s not quite correct. RBAC determines what actions a user can perform not by looking at the user’s permissions, but looking at the user’s roles, and the permissions those roles have. It would be more correct to say "which users can perform what actions on which resources, based on the roles assigned to the user."

0 Answers

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?