Ping a Specific Port

Question

Chris G.

Asked: 2021-10-15 05:25:24 +0800 CST2021-10-15 05:25:24 +0800 CST 2021-10-15 05:25:24 +0800 CST

How to know what roles are missing in RBAC

772

How can I figure out what role is missing in a service account?

Like I have the following:

kubectl auth can-i create taskrun --all-namespaces --as=system:serviceaccount:default:default

no

Ok, but where to go from here :-)

1 Answers

Voted

moonkotte · Answer 1 · 2021-10-20T01:09:44+08:00

moonkotte

2021-10-20T01:09:44+08:002021-10-20T01:09:44+08:00

Posting the answer as community wiki, feel free to edit and expand.

As @mdaniel has already mentioned, there are no built-in tools in kubernetes which will figure out required access for a service account for you and then create a Role and RoleBinding.

As a temporary solution it can be used a clusterrole - cluster-admin, however best practice is to provide only minimun possible and required access rights.

Below are links to documentation which will be helpful:

API request verb - API verbs like get, list, create, update, patch, watch, delete, and deletecollection are used for resource requests

1

How to know what roles are missing in RBAC

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?