CKA &. CKAD (104) 썸네일형 리스트형 Container Storage Interface Docker storage and Volume Network Policy Practice Test - Security Contexts [Practice Test] ㅁ What is the user used to execute the sleep rpocess within the 'ubuntu-sleeper' pod? in the current(default) namespace kubectl exec ubuntu-sleeper -- whoami ㅁ Edit the pod 'ubuntu-sleeper' to run the sleep process with user ID 1010. Node: Only make the necessary changes. Do not modify the name or image of the pod securityContext: runAsUser: 1010 추가 apiVersion: v1 kind: Pod metad.. Practice Test - Securing Image nginx-pod.yaml apiVersion: v1 kind: Pod metadata: name: nginx-pod spec: containers: - name: nginx image: nginx Private Repository $ docker login private-registry.io $ docker run private-registry.io/appsinternal-app nginx-pod.yaml apiVersion: v1 kind: Pod metadata: name: nginx-pod spec: containers: - name: nginx image: private-registry.io/appsinternal-app How do you pass the credentials to the do.. Cluster Roles kubectl api-resources --namespaced=true kubectl api-resources --namespaced=false [Practice Test] ㅁ How many ClusterRole do you see defined in the cluster? kubectl get ClusterRoles --no-headers | wc -l ㅁ How many ClusterRoleBindings exsit on the cluster? kubectl get ClusterRoleBindings --no-header | wc -l ㅁ What namespaces is the cluster-admin clusterrole part of? kubectl describe ClusterRole clu.. RBAC (Role Based Access Controls) and Practice Test developer-role.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: name: developer rules: - apiGroups: [""] resources: ["pods"] verbs: ["list", "get", "create", "update", "delete"] - apiGroups: [""] resources: ["ConfigMap"] verbs: ["create"] kubectl create -f developer-role.yaml devuser-developer-binding.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: nam.. Authorization Attribute Based Access Control Role Based Access Control 이전 1 ··· 4 5 6 7 8 9 10 ··· 13 다음
