- Take me to Video Tutorial
In this section, we will take a look at authentication in a kubernetes cluster
Different users that may be accessing the cluster security of end users who access the applications deployed on the cluster is managed by the applications themselves internally.
-
So, we left with 2 types of users
- Humans, such as the Administrators and Developers
- Robots such as other processes/services or applications that require access to the cluster.
-
All user access is managed by apiserver and all of the requests goes through apiserver.
-
There are different authentication mechanisms that can be configured.
-
If you set up via kubeadm then update kube-apiserver.yaml manifest file with the option.
-
To authenticate using the basic credentials while accessing the API server specify the username and password in a curl command.
$ curl -v -k http://master-node-ip:6443/api/v1/pods -u "user1:password123"
-
We can have additional column in the user-details.csv file to assign users to specific groups.
