How would you set the "AlwaysAllow" authorization mode in the Kube API Server ?

--authorization-mode=AlwaysAllow

How would you set the Node, RBAC and Webhook authorization modes in the Kube API Server ?

--authorization-mode=Node,RBAC,Webhook

A role definition file is created and name it as "developer-role.yaml". Run the full command and create the role.

kubectl create -f developer-role.yaml

Type the full command to describe a role named "developer"

kubectl describe role developer

Type the full command to describe a role binding named "devuser-developer-binding"

kubectl describe rolebinding devuser-developer-binding

Type the full command to validate if we have access to create deployments in the Kubernetes cluster?

kubectl auth can-i create deployments

kubectl auth can-i create deployment

Type the full command to validate if we have access to delete nodes in the Kubernetes cluster?

kubectl auth can-i delete nodes

We're logged in as root user. Type the full command to verify if the user "dev-user" can create Pods.

kubectl auth can-i create pods --as dev-user

kubectl auth can-i create pod --as dev-user

We're logged in as root user. Type the full command to verify if the user "dev-user" can create Pods in the namespace "test" .

kubectl auth can-i create pods --as dev-user --namespace test

kubectl auth can-i create pod --as dev-user --namespace test

kubectl auth can-i create pods --as dev-user -n test

kubectl auth can-i create pod --as dev-user -n test

According to the attached role definition file, what parameter should be added under "rules" in order the user can only perform those actions (verbs) in the Pods "blue" and "orange". Enter the full parameter, including the Pod names:

resourceNames: ["blue", "orange"]

resourceNames: ["blue","orange"]

Run the full command to create a role with the following information: Role name: developer Namespace: default Allowed actions (verbs): list, create, delete Resource: Pods

kubectl create role developer --namespace=default --verb=list,create,delete --resource=pods

kubectl create role developer --resource=pods --verb=list,create,delete --namespace=default

kubectl create role developer --namespace=default --verbs=list,create,delete --resource=pods

kubectl create role developer --resource=pods --verbs=list,create,delete --namespace=default

Run the full command to create a role binding with the following information: Rolebinding name: dev-user-binding Namespace: default Role name: developer User: dev-user

kubectl create rolebinding dev-user-binding --namespace=default --role=developer --user=dev-user

kubectl create rolebinding dev-user-binding --role=developer --user=dev-user --namespace=default

Section 7: Security (20-23)

Quiz

•

Computers

•

University

•

Practice Problem

•

Easy

Maiky Alfaro

Used 6+ times

FREE Resource

31 questions

Show all answers

1.

MULTIPLE SELECT QUESTION

45 sec • 1 pt

What are valid authorization mechanisms in a Kubernetes cluster?

Webhook

Node authorizer

ABAC

RBAC

Tokens

2.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

It authorizes any request coming from a user with the name "system:node" and part of the "system:node" group. Then is granted with the privileges.
What type of authorization mechanism is described above?

Webhook

Node authorizer

ABAC

RBAC

Tokens

3.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

When kubelet server access the Kube API to read information about services, nodes, pods, etc...
What type of authorization mechanism is described above?

Webhook

Node authorizer

ABAC

RBAC

Tokens

4.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

It's used when we associate a user or a group of users to a set of permissions. For example, allow a user to view PODs, create PODs or delete PODs.
What type of authorization mechanism is described above?

Webhook

Node authorizer

ABAC

RBAC

Tokens

5.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

We create a policy file in JSON format with a set of policies and pass it to the Kube API configuration.

What type of authorization mechanism is described above?

Webhook

Node authorizer

ABAC

RBAC

Tokens

6.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Instead of associating a user or group of users to a set of permissions, we define a role. The permissions are associated to a role. This role is then applied to users or group of users.

What type of authorization mechanism is described above?

Webhook

Node authorizer

ABAC

RBAC

Tokens

7.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

It's externally managed authorization mechanism.

What type of authorization mechanism is described above?

Webhook

Node authorizer

ABAC

RBAC

Tokens

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

30 questions

ReViSion HUmAN coMPutER InteRActioN

Quiz

•

University

28 questions

Linux Review 3

Quiz

•

8th Grade - Professio...

28 questions

Section 7: Security (10-14)

Quiz

•

University

30 questions

Introduction to Programming Quiz

Quiz

•

University

26 questions

Introduction to Computing Midterm Exam

Quiz

•

University

28 questions

A+ Pretest 1: 3/3

Quiz

•

9th Grade - Professio...

27 questions

Wi-Fi Security

Quiz

•

University

27 questions

Computational Thinking Quiz

Quiz

•

10th Grade - University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

20 questions

Figurative Language Review

Quiz

•

6th Grade

Discover more resources for Computers

30 questions

Quiz 1 Review

Quiz

•

University

Section 7: Security (20-23)

31 questions

What are valid authorization mechanisms in a Kubernetes cluster?

It authorizes any request coming from a user with the name "system:node" and part of the "system:node" group. Then is granted with the privileges.
What type of authorization mechanism is described above?

When kubelet server access the Kube API to read information about services, nodes, pods, etc...
What type of authorization mechanism is described above?

It's used when we associate a user or a group of users to a set of permissions. For example, allow a user to view PODs, create PODs or delete PODs.
What type of authorization mechanism is described above?

We create a policy file in JSON format with a set of policies and pass it to the Kube API configuration.

What type of authorization mechanism is described above?

Instead of associating a user or group of users to a set of permissions, we define a role. The permissions are associated to a role. This role is then applied to users or group of users.

What type of authorization mechanism is described above?

It's externally managed authorization mechanism.

What type of authorization mechanism is described above?

Kubernetes make an API call to the Open Policy Agent with the information about the user and his access requirements. The OPA will decide if the user should be permitted or not.

What type of authorization mechanism is described above?

What are the two additional authorization modes we can find in Kubernetes cluster?

"It allows all the request without performing any authorization checks".
What of the additional authorization modes that we can find in Kubernetes cluster does the above statement refer to?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

Section 7: Security (20-23)

31 questions

What are valid authorization mechanisms in a Kubernetes cluster?

It authorizes any request coming from a user with the name "system:node" and part of the "system:node" group. Then is granted with the privileges.What type of authorization mechanism is described above?

When kubelet server access the Kube API to read information about services, nodes, pods, etc...What type of authorization mechanism is described above?

It's used when we associate a user or a group of users to a set of permissions. For example, allow a user to view PODs, create PODs or delete PODs.What type of authorization mechanism is described above?

We create a policy file in JSON format with a set of policies and pass it to the Kube API configuration. What type of authorization mechanism is described above?

Instead of associating a user or group of users to a set of permissions, we define a role. The permissions are associated to a role. This role is then applied to users or group of users. What type of authorization mechanism is described above?

It's externally managed authorization mechanism. What type of authorization mechanism is described above?

Kubernetes make an API call to the Open Policy Agent with the information about the user and his access requirements. The OPA will decide if the user should be permitted or not. What type of authorization mechanism is described above?

What are the two additional authorization modes we can find in Kubernetes cluster?

"It allows all the request without performing any authorization checks".What of the additional authorization modes that we can find in Kubernetes cluster does the above statement refer to?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

It authorizes any request coming from a user with the name "system:node" and part of the "system:node" group. Then is granted with the privileges.
What type of authorization mechanism is described above?

When kubelet server access the Kube API to read information about services, nodes, pods, etc...
What type of authorization mechanism is described above?

It's used when we associate a user or a group of users to a set of permissions. For example, allow a user to view PODs, create PODs or delete PODs.
What type of authorization mechanism is described above?

We create a policy file in JSON format with a set of policies and pass it to the Kube API configuration.

What type of authorization mechanism is described above?

Instead of associating a user or group of users to a set of permissions, we define a role. The permissions are associated to a role. This role is then applied to users or group of users.

What type of authorization mechanism is described above?

It's externally managed authorization mechanism.

What type of authorization mechanism is described above?

Kubernetes make an API call to the Open Policy Agent with the information about the user and his access requirements. The OPA will decide if the user should be permitted or not.

What type of authorization mechanism is described above?

"It allows all the request without performing any authorization checks".
What of the additional authorization modes that we can find in Kubernetes cluster does the above statement refer to?