To grant a user read access to resources in a project using RBAC, which approach is correct?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $9.99Unlock all

Prepare for the Red Hat OpenShift Developer II DO288 Exam with our quizzes. Study with flashcards and multiple choice questions, each with hints and explanations. Get ready for your certification!

Multiple Choice

To grant a user read access to resources in a project using RBAC, which approach is correct?

RBAC grants access by binding subjects to roles. A Role is scoped to a single namespace (the project), while a ClusterRole is cluster-wide. To give a user read access inside a specific project, define a Role in that project's namespace that allows read operations (for example, get, list, watch) on the resources you want, and then bind that Role to the user with a RoleBinding in the same project. This confines the permission to that namespace. A ClusterRole would grant access across the whole cluster, not just the project, and simply creating a Role alone doesn’t grant any access without a binding. Using a ClusterRoleBinding with a Role isn’t the standard pattern for namespace-scoped permissions. Therefore, the correct approach is to create the Role and bind it with a RoleBinding in the project.

To grant a user read access to resources in a project using RBAC, which approach is correct?

Prepare for the Red Hat OpenShift Developer II DO288 Exam with our quizzes. Study with flashcards and multiple choice questions, each with hints and explanations. Get ready for your certification!

To grant a user read access to resources in a project using RBAC, which approach is correct?

Get the latest from Examzify