반응형
해당 내용은 Udemy의 Certified Kubernetes Administrator (CKA) with Practice Tests 강의를 공부한 내용입니다. 내용을 그대로 번역하기보다는, 제가 이해하기 쉬운 대로 수정한 부분들이 있습니다.
⚠️ 영어 독해가 많이 부족합니다. 틀린 내용이 있으면 알려주시면 감사하겠습니다.
Q1. Inspect the environment and identify the authorization modes configured on the cluster.
답: Node, RBAC
Q2. How many roles exist in the default namespace?
답: 0
Q3. How many roles exist in all namespaces together?
답: 12
Q4. What are the resources the kube-proxy role in the kube-system namespace is given access to?
답: configmaps
Q5. What actions can the kube-proxy role perform on configmaps?
답: get
Q6. Which of the following statements are true?
답: kube-proxy role can get details of configmap object by the name kube-proxy only
Q7. Which account is the kube-proxy role assigned to?
답: system:bootstrappers:kubeadm:default-node-token
Q8. A user dev-user is created. User's details have been added to the kubeconfig file. Inspect the permissions granted to the user. Check if the user can list pods in the default namespace.
답: dev-user does not have permissions to list pods
Q9. Create the necessary roles and role bindings required for the dev-user to create, list and delete pods in the default namespace.
Q10. A set of new roles and role-bindings are created in the blue namespace for the dev-user. However, the dev-user is unable to get details of the dark-blue-app pod in the blue namespace. Investigate and fix the issue.
Q11. Add a new rule in the existing role developer to grant the dev-user permissions to create deployments in the blue namespace.
반응형
'MLOps > Doker & Kubernetes' 카테고리의 다른 글
| Udemy CKA 강의 정리 165: Service Accounts (0) | 2023.01.19 |
|---|---|
| Udemy CKA 강의 정리 162: Cluster Roles and Role Bindings (1) | 2023.01.19 |
| Udemy CKA 강의 정리 160: Practice Test - RBAC (0) | 2023.01.18 |
| Udemy CKA 강의 정리 159: Role Based Access Controls (0) | 2023.01.18 |
| Udemy CKA 강의 정리 158: Authorization (0) | 2023.01.18 |
댓글