In this video, we explore Kubernetes' role-based access control (RBAC) to provide fine-grained access to users and service accounts. We start with a quick look at Kubernetes' general authentication and authorization and discuss some security best practices. We then dive deep into RBAC, its architecture, and its tenants (Subjects, (Cluster)Roles, and (Cluster)Bindings). In the demos, we also discuss how to provision client certificates and create configuration files for new users and how to leverage RBAC to grant them access to Kubernetes resources. We also learn how to impersonate users in Kubernetes, a useful technique for ensuring users have the correct access to Kubernetes resources. Finally, we discuss ClusterRole aggregation and walk through the built-in Kubernetes ClusterRoles.

Demo scripts: https://github.com/gary-RR/myYouTube_kubernetes_RBAC

My other videos:

Cilium Service Network
https://www.youtube.com/watch?v-o6E8bYj-xw
Cilium Kubernetes CNI Provider: Part 4, IP Routing Modes (Direct and Encapsulated)
https://youtu.be/j2aox7K-7wU
Cilium Kubernetes CNI Provider, Part 3: Cluster Mesh
https://youtu.be/gkrPt0ZcCfo
Cilium Kubernetes CNI Provider, Part 2: Security policies and observability using Hubble
https://youtu.be/5EcVrm01rAU
Cilium Kubernetes CNI Provider, Part 1: Overview of eBPF and Cilium and the installation process https://youtu.be/aLq3O3l2LF4
What is VXLAN and how is it used as an overlay network in Kubernetes?
https://youtu.be/WMLSD2y2Ig4
Managing Linux Logins, Users, and Computers in Active Directory (AD): Part 2 – Adding Linux Computers to AD:
https://youtu.be/1tgqdz3lw-k
Managing Linux Logins, Users, and Computers in Active Directory (AD): Part 1 – Setting Up AD:
https://youtu.be/ftxxO381-_Q
Sharing resources between Windows and Linux:
https://youtu.be/MzHX6eUlZfs
Kubernetes Kube Proxy Modes: iptables and ipvs, Deep Dive:
https://youtu.be/lkXLsD6-4jA
Kubernetes: Configuration as data: environment variables, config maps and secrets:
https://youtu.be/mjcNIaRDAsc
Configuring and managing storage in Kubernetes:
https://youtu.be/U11YjaRvCd4
Istio Service Mesh – Securing Kubernetes workloads:
https://youtu.be/GFXjlPBsykM
Istio Service Mesh – Introduction
https://youtu.be/x_HRl-Ehvb8
Understanding Kubernetes Networking. Part 6: Calico Network Policies:
https://youtu.be/sxB9-td1-F8
Understanding Kubernetes Networking. Part 5: Introduction to Kubernetes Networking Policies:
https://youtu.be/vjhA9TJWw-k
Understanding Kubernetes Networking. Part 4: Kubernetes Services:
https://youtu.be/BZk2HUKsxAQ
Understanding Kubernetes Networks, Part 3: Calico Kubernetes CNI Provider in Detail:
https://youtu.be/vOo__3GqyxM
Understanding Kubernetes Networking. Part 2: POD Networking, CNI, and Flannel CNI: Plugin: https://www.youtube.com/watch?vU35C0EPSwoY
Understanding Kubernetes Networking. Part 1: Container Networking: https://www.youtube.com/watch?vApeX6IAOfOc
Set up a Linux-Windows hybrid Kubernetes cluster (based on Calico) to host .NET containers:
https://youtu.be/DMKS43POa5s
A Docker and Kubernetes tutorial for beginners:
A Docker and Kubernetes tutorial for beginners. – YouTube
Set up a /"Docker-less/" multi-node Kubernetes cluster on an Ubuntu server:
https://youtu.be/H9YfKliGuUY
Step-by-step guide to setting up a multi-node Kubernetes cluster on CentOS: https://www.youtube.com/watch?v2Tr7hNW02fg
Setting up and configuring a CentOS Linux server on a Windows 10 hypervisor – YouTube: https://www.youtube.com/watch?vCBfJXZitG-o
Setting up NAT (Network Address Translation) on Hyper-V: https://www.youtube.com/watch?vPYamsYQSmFY
Enable Nested Virtualization on Windows to run WSL 2 (Linux) and Hyper-V on a VM: https://www.youtube.com/watch?vY1U2YnnowsE
Setting up a multi-node MicroK8S cluster on Windows 10: https://www.youtube.com/watch?vfZVivQYDU8k
Detailed installation instructions for Windows Terminal (WSL 2), Linux, Docker and Kubernetes on Windows 10:
https://www.youtube.com/watch?v5MlLVjZJcyI

Please take the opportunity to connect with your friends and family and share this video with them if you find it useful.