[Online] Deep-dive into Kubernetes RBAC

In this session we will take you through some of the interesting topics in Kubernetes security, using k8s concepts you will be able to regulate access to users/services on Kubernetes cluster resources in a better way.

Agenda

1. RBAC and its necessity

• Brief overview

2. Roles / Role Bindings (Including cluster roles)

• K8s API groups
• Defining Roles/Rolebindings
• Demo on providing/limiting access using - Roles/Rolebindings
• Best practices

3. User level and service level restrictions using RBAC
4. Security context

• Define user access while building image
• PodSecurityContext/ Container's security context

Key Take aways:

What is RBAC? and why , when its needed? How can we restrict users and services using RBAC? and how to manage the security context while running applications in Kubernetes clusters.
Joining us, Our 2 speakers will take you through Kubernetes RBAC and Security Context

Speakers
Sushma: LinkedIn profile
Sushma is a software developer for Cluster Autoscaler and container storage solutions for IBM Cloud IKS, ROKS and Satellite services with 14+ years of experience. She has experience working on various components of cloud like autoscaler, storage, compute in cloud environment.

Guna: Linkedln profile
Guna is a Software engineer at IBM ISL having over 4 years of experience. Her work mainly drives the development of CSI driver for container storage in IBM Cloud. Her expertise is in Golang, monitoring and alerting tools. She has worked actively in integrating significant applications and open source tools into the Kubernetes environment and also is a contributor to the open source Kubernetes signature community. She has had experience in bringing up k8s infrastructure platform involving DBs, monitoring and alerting tools, etc outside cloud also to facilitate deployment of applications.

Meeting link: https://ibm.webex.com/ibm/j.php?MTID=mfc1d35c2af080c2a2323225565499ebd
Meeting number: 146 627 7751
Password: J37jzpwfC7e (53759793 when dialing from a phone or video system)

WHAT’S COMING NEXT / PIPELINE:

• Kubernetes Scheduling and controlling via constraints