Back to Catalog
Cloud
Security
Access Control
Manage Kubernetes API access using Role-Based Access Control (RBAC)
Intent & Description
The Access Control pattern uses Kubernetes RBAC to manage access to the Kubernetes API server. RBAC defines roles with permissions and role bindings that associate roles with users or service accounts. This implements the principle of least privilege for Kubernetes operations and enables audit trails for access decisions.
Real-world Use Case
Use when you need to control access to Kubernetes resources or when you want to implement the principle of least privilege for cluster operations.
Source
Advantages
- Fine-grained access control
- Principle of least privilege
- Audit trail for access
- Standard Kubernetes mechanism
Disadvantages
- Complex to configure correctly
- Requires RBAC knowledge
- Over-permissive roles can be dangerous