Reputation: 63
As a Kubernetes admin, what is the best way to handle user authentication for kubectl?
I'm currently trying to figure out the best way, as a Kubernetes admin, to make users and give them access to kubectl. Originally, I was going to use serviceAccounts, but it seems that that should not be used as authentication for users. I have been reading over this: https://kubernetes.io/docs/admin/authentication/#users-in-kubernetes but there are so many different ways to authenticate I was not sure what the best practices are for my use case. Thanks for any help!
Upvotes: 1
Views: 235
Answers (2)
Reputation: 63
I ended up using OpenID Connect Authentication using Google. I followed this guide to set it up: https://www.skuid.com/blog/reduce-administrative-toil-with-kubernetes-1-3/.
Upvotes: 0
Reputation: 371
i would go the cert route. I believe that what most people use for production and its what we currently use. I included a link to the hard way which has a better description on making certs.
good luck
Upvotes: 2
Related Questions
- Implementing Authentication and Authorization in a Kubernetes
- Kubernetes application authentication
- How to manage kubectl from another user
- How do I authenticate with Kubernetes kubectl using a username and password?
- How to secure kubectl access?
- Kubernetes RBAC authentication for default user
- kubernetes: Log in to dashboard as admin
- How to config simple login/pass authentication for kubernetes desktop UI
- User access using kubectl