3 Identity and access management

This chapter covers

The basics of RBAC
Creating roles and role bindings
Using certificates to create users and groups
Creating service accounts with roles
Mounting service accounts to pods

In this chapter, we’ll focus on role-based access control, which is within the Cluster Architecture, Installation & Configuration section of the exam curriculum. Now that you know how the Kubernetes API works, it’s essential to understand how to authenticate and authorize a user and/or a service account for the exam.

The cluster architecture, installation & configuration domain

This chapter covers part of the cluster architecture, installation and configuration domain of the CKA curriculum. This domain includes what consists of a Kubernetes cluster, and the ways in which we configure different aspects of the cluster. It encompasses the following competencies.

Competency	Chapter Section
Manage role-based access control (RBAC)	3.1, 3.2
Implement and configure a highly available control plane	3.3

3 Identity and access management

This chapter covers

The cluster architecture, installation & configuration domain

3.1 Role-based Access Control (RBAC)

3.1.1 Roles and role bindings

3.1.2 System roles and groups

3.2 Users and groups

3.3 Service accounts

3.4 Summary