Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Linux Foundation CKS Exam - Topic 1 Question 31 Discussion

Actual exam question for Linux Foundation's CKS exam
Question #: 31
Topic #: 1
[All CKS Questions]

Context

The kubeadm-created cluster's Kubernetes API server was, for testing purposes, temporarily configured to allow unauthenticated and unauthorized access granting the anonymous user duster-admin access.

Task

Reconfigure the cluster's Kubernetes API server to ensure that only authenticated and authorized REST requests are allowed.

Use authorization mode Node,RBAC and admission controller NodeRestriction.

Cleaning up, remove the ClusterRoleBinding for user system:anonymous.

Show Suggested Answer Hide Answer
Suggested Answer: A

by Corinne at Jan 11, 2023, 04:35 AM

Limited Time Offer

25%

Off

Get Premium CKS Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Daryl
4 months ago
I don't think removing system:anonymous is enough, we need more layers.
upvoted 0 times
...
Laurel
5 months ago
RBAC and NodeRestriction are essential for security.
upvoted 0 times
...
Effie
5 months ago
Wait, they actually gave anonymous users admin access? That's wild!
upvoted 0 times
...
Yuette
5 months ago
Totally agree, leaving it open is a big no-no.
upvoted 0 times
...
Mariann
5 months ago
Just a reminder, always secure your API server!
upvoted 0 times
...
Karon
5 months ago
I definitely remember cleaning up the ClusterRoleBinding for system:anonymous, but I might need to double-check the command syntax.
upvoted 0 times
...
Abraham
5 months ago
The admission controller NodeRestriction is crucial here, right? I hope I can recall the exact steps to apply it during the exam.
upvoted 0 times
...
Royce
5 months ago
I think we need to edit the kube-apiserver manifest to include the Node and RBAC modes, but I might be mixing it up with another question we did.
upvoted 0 times
...
Derick
6 months ago
I remember we practiced configuring the API server with RBAC, but I'm not entirely sure how to set the authorization modes correctly.
upvoted 0 times
...
Herminia
6 months ago
Hmm, I'm a little unsure about this one. The question mentions several different Gas-related terms, and I want to make sure I understand the differences between them before answering. I might need to review my notes on Gas again.
upvoted 0 times
...
Chau
6 months ago
Okay, I've got this. The question is asking about the capabilities of the production floor execution interface, so I'll select the options that seem to match those capabilities.
upvoted 0 times
...

Save Cancel