Risk Level: High
Cloud Entity: Kubernetes Role Binding
CloudGuard Rule ID: D9.K8S.AC.06
Covered by Spectral: No
Category: Security, Identity, & Compliance
KubernetesRoleBinding should not have roleRef.name='cluster-admin'
A role binding grants the permissions defined in a role to a user or set of users. It holds a list of subjects (users, groups, or service accounts), and a reference to the role being granted. A RoleBinding grants permissions within a specific namespace whereas a ClusterRoleBinding grants that access cluster-wide.
- Container Admission Control
- Container Admission Control 1.0
Updated 3 months ago