Crystal clear explanations. You did an amazing job making what seemed to be a very complex subject so much easier to understand! Thank you for making this!
These many days, I havr stopped studying due to some personal work. Today when i take a look on RBAC topic, the way you explained is very much detailed concepts. I never see this kind of explanations during my k8s corporate training as well. You are a good teacher, keep up the great efforts. Thank you.
Goal is everyone should understand the concept - beginner to advanced. Glad that you liked my content. Please subscribe and share with your friends and colleagues
Mr. Pavan, your explanation was quite good but you could be more specific about what you do in the YAML file which you tend to skip that is biggest thing in kubernetes to understand. Make sure that you add it in your upcoming videos. Don't take me wrong :))
I am having a doubt, suppose i want to create groups like front-end, back-end and assign the roles to these groups to access only their pods and also add the corresponding users to their groups, then when each user logins to use the cluster should they keep changing contexts like this? If a front end user changes context will it affect the backend user or the admin as well?
the pod is created using kubectl image and that has kubectl command inside the pod. so trying to access pods inside the pod (pod is a function user / batch user / non-human user) to access the resources. Hence we need a service account which has to be attached in role binding with roles. Hope its clear
My k8s applications always uses , psp as restricted . So it always restricts pcap capture inside pods . I see netadmin rawnet capabilities alllows How do I provide permissions to capture pcap in my pods and enable from my helm charts
I have installed ubuntu desktop on a virtual machine and there i have configured 3 node minikube cluster. i have created a demouser on ubuntu desktop. how i will assign a cluster role to demouser so that when i login to ubuntu desktop as demouser it should have readonly access to pod resources.
But i created kubernetes cluster using kops so in That scenario how can i do this can you please do video on that by creating kubernetes production cluster using kops
Hi Pavan, Great Explanations❤ But I have a doubt, If user pavan can switch between context then he can switch to minikube context and start performing admin task right ? then how can we make sure he can login using his certs and can only see his related context ?
Great Explanation one doubt When there are 40 users and some of them have different permissions Then I should repeat the same steps 40 times or is there an any other way ?
Bro if the user have the acces for the cluster nodes he have acess for kube admin , he have the ablity for changing all files and edite it , he can creat all users and etc , how to over come these these is possiblity to remove the admin user,
Pavan, it's really awesome Thanks for the video. I have one doubt If i want to grant the same user permissions across multiple namespaces without using a ClusterRole is it possible or not ?
Most comprehensive video covering so many things in just 20 mins.
Thank you.!
Best K8 Tutorials ever I have come across. Beauty is so much complicated topics grilled and served like a sweet cake. Thanks a million Pavan
Thank you so much Anil. Please share with your friends and colleagues
@anilkommalapati6248
You are absolutly correct! clear and on point explanation.
Crystal clear explanations. You did an amazing job making what seemed to be a very complex subject so much easier to understand! Thank you for making this!
Best channel for Devops since I tried almost every channel he deserves more subscribers
These many days, I havr stopped studying due to some personal work. Today when i take a look on RBAC topic, the way you explained is very much detailed concepts. I never see this kind of explanations during my k8s corporate training as well. You are a good teacher, keep up the great efforts. Thank you.
Pavan! You are the real MVP in teaching Kubernetes in YT.
Thank you Avant. Please subscribe and share with your friends and colleagues
Pavan, it's really awesome..what a spoon feeding session. simple and Zenith....Thanks a lot.
Goal is everyone should understand the concept - beginner to advanced. Glad that you liked my content. Please subscribe and share with your friends and colleagues
Excellent RBAC explanation and examples. Well done!
Thank you so much. Please subscribe and share with your friends and colleagues
This is the best explained K8S RBAC with precise examples. Quality content with lot of Pasion.
Thank you Siva
Best video ever for Role Binding
Mind blowing concepts for rbac,cbac & Sa
Mind blowing really superb explaination I used to listen understand master as many times
Hi Pavan,Is there any forum or community to reach you?
Clear cut, to the point explanation
Thanks
Pavan
Very Nice man. Keep it up. All doubts got cleared in single video. God bless u :)
Thank you so much. Right from creation of certificate to User till cluster roles concept, ur explanation is very clear.
Thank you Neeharika. Please subscribe and share with your friends and colleagues
Thanks Pavan for the crystal clear explanation on kubernetes topic.
Thank you Raj for watching
Excellent Explanation. Thank you
Very Very good explanation clear and crispy. Love this video sir. Also please make a video how this binding concept achieved using Azure AD
All the k8s tutorials are well articulated. Thank so much 🎉
Thank you so much. Please subscribe and share with your friends and colleagues
You have done an amazing work here!
Awesome expalanation Pavan! Thank you
very good video. You deserve 100K views
Thank you so much. Please subscribe and share with your friends and colleagues
Hi Pawan, you have nailed it....very well explained 🎉🎉
Thank you so much🙏 Please subscribe and share with your LinkedIn family, friends and colleagues
Pls include more topics so that ur subscribers will increase for sure
Wonderful explanation and demo
well explained man , it really helped
Doubt!, where we are creating a user , is that Linux user or Iam user from AWS or kubernetes supports to create a user ???
K8s user
You have done an amazing work here! 👍
Great explanation 👍🏻
You're the best, man.
Very good Session, Pavan... !!!
Thank you so much Prince Philip. Please subscribe and share with your friends and colleagues
Really you are creating good and quality content .. Can you please create any project which resembles production in aks /eks.
Sure
Mr. Pavan, your explanation was quite good but you could be more specific about what you do in the YAML file which you tend to skip that is biggest thing in kubernetes to understand. Make sure that you add it in your upcoming videos.
Don't take me wrong :))
Superb video 🤞
liked and sub'd!! nice explanation! Especially, the kubectl auth can-i
keep up the good work. God bless you!
This was very easy to follow. Thanks a lot!
Thank you. Please subscribe and share with your friends and colleagues
I am having a doubt, suppose i want to create groups like front-end, back-end and assign the roles to these groups to access only their pods and also add the corresponding users to their groups, then when each user logins to use the cluster should they keep changing contexts like this? If a front end user changes context will it affect the backend user or the admin as well?
Hello, in the sa part, you listed pods inside a pod? I'm a little confused about what happened here.
the pod is created using kubectl image and that has kubectl command inside the pod. so trying to access pods inside the pod (pod is a function user / batch user / non-human user) to access the resources. Hence we need a service account which has to be attached in role binding with roles. Hope its clear
Hey Pavan, Great Explanation.
I have a question -> are these steps same for all other process - kops, AKS, EKS ?
Yes Santhosh
I face error You must be logged into sever (unauthorized) after kubectl get pods . I think I followed you all steps.
May I know your openssl version?
@@PavanElthepu 2.8.3
Try upgrading it to latest version, delete minikube cluster and start fresh. It should work
I tried many ways and I still face same problem 😢
Tried with 3.6.1 version?
Hi Pavan,
Thanks for the video, have you tried kube bench to check rbac compliance?
Thank you so much Viswa. Heard of it, but never tried. Please subscribe and share with your friends and colleagues
Nice video . Short and crisp
great explanation. clear, easy to follow. thank you for that :)
Thank you so much. Please share with your friends and colleagues
so when workig with actual clusters, where do i get that ca.crt file which you used for user creation?
You download it from somewhere?
If you have deployed your cluster using kubeadm then use the path -CA /etc/kubernetes/pki/ca.crt -CAkey /etc/kubernetes/pki/ca.key
Dont you need to create csr request on the cluster ??
can we have the commands shared in git hub link please the openSSL ones
well explained, its crystal clear
My k8s applications always uses , psp as restricted . So it always restricts pcap capture inside pods .
I see netadmin rawnet capabilities alllows
How do I provide permissions to capture pcap in my pods and enable from my helm charts
you did really well! great explanations! thank you
Great work !
I have installed ubuntu desktop on a virtual machine and there i have configured 3 node minikube cluster.
i have created a demouser on ubuntu desktop. how i will assign a cluster role to demouser so that when i login to ubuntu desktop as demouser it should have readonly access to pod resources.
wow ..! pavan ..! Thanks for helping out
Glad that you found this helpful Prateek. Please subscribe and share with your friends and colleagues🙏
Thanks for explantion
Hi Pavan, do you know where I can get the ca.key and ca.crt in eks cluster 1.26
really to good ... thanks pavan
Hi, can you please help? I am using microk8s and facing issues in creating csr and cert. Please help! TIA
But i created kubernetes cluster using kops so in That scenario how can i do this can you please do video on that by creating kubernetes production cluster using kops
Noted!
Best channel
Most benefit video Bhaiyaa please make more video
Aure Abrar. Please subscribe and share with your friends and colleagues
@@PavanElthepu sure bhaiyya
great video thanks pavan
Plz bring live project..
Excellent ❤
Thank you ❤
Hi Pavan, Great Explanations❤
But I have a doubt, If user pavan can switch between context then he can switch to minikube context and start performing admin task right ? then how can we make sure he can login using his certs and can only see his related context ?
ultimate video brother
Thank you Sundeep. Please subscribe and share with your friends and colleagues
Great Explanation
one doubt
When there are 40 users and some of them have different permissions
Then I should repeat the same steps 40 times or is there an any other way ?
You can use groups
This is awesome
Bro if the user have the acces for the cluster nodes he have acess for kube admin , he have the ablity for changing all files and edite it , he can creat all users and etc , how to over come these these is possiblity to remove the admin user,
Pavan, it's really awesome Thanks for the video. I have one doubt If i want to grant the same user permissions across multiple namespaces without using a ClusterRole is it possible or not ?
Perfect video thanks a lot 👏
Thank you Yogi. Please share our channel with your friends and colleagues
Bhaiyaa please cover helm topic please
Hi Abar Syed. Sure!
thank you sir much needed
Thank you Rohan. Please subscribe and share with your friends and colleagues
@@PavanElthepu Hi pavan, what is difference between port, targetport and containerport??
really helpful..
OMG ...... Amazing...... ❤️
nice 👍👍👍👍
Thank you Pritam. Please subscribe and share with your friends and colleagues
Great work!
Thank you Aditya. Please subscribe and share with your friends and colleagues