U.S. Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Linux Foundation CKS Exam - Topic 1 Question 56 Discussion

Create a User named john, create the CSR Request, fetch the certificate of the user after approving it.Create a Role name john-role to list secrets, pods in namespace johnFinally, Create a RoleBinding named john-role-binding to attach the newly created role john-role to the user john in the namespace john. To Verify:Use the kubectl auth CLI command to verify the permissions.
A) Explanation: se kubectl to create a CSR and approve it. Get the list of CSRs: kubectl get csr Approve the CSR: kubectl certificate approve myuser Get the certificate Retrieve the certificate from the CSR: kubectl get csr/myuser -o yaml here are the role and role-binding to give john permission to create NEW_CRD resource: kubectl apply -f roleBindingJohn.yaml --as=john rolebinding.rbac.authorization.k8s.io/john_external-rosource-rb created kind: RoleBinding apiVersion: rbac.authorization.k8s.io/v1 metadata: name: john_crd namespace: development-john subjects: - kind: User name: john apiGroup: rbac.authorization.k8s.io roleRef: kind: ClusterRole name: crd-creation kind: ClusterRole apiVersion: rbac.authorization.k8s.io/v1 metadata: name: crd-creation rules: - apiGroups: ['kubernetes-client.io/v1'] resources: ['NEW_CRD'] verbs: ['create, list, get']

Linux Foundation CKS Exam - Topic 1 Question 56 Discussion

Actual exam question for Linux Foundation's CKS exam
Question #: 56
Topic #: 1
[All CKS Questions]

Create a User named john, create the CSR Request, fetch the certificate of the user after approving it.

Create a Role name john-role to list secrets, pods in namespace john

Finally, Create a RoleBinding named john-role-binding to attach the newly created role john-role to the user john in the namespace john. To Verify:Use the kubectl auth CLI command to verify the permissions.

Show Suggested Answer Hide Answer
Suggested Answer: A

by Lorrine at May 31, 2024, 08:15 AM

Limited Time Offer

25%

Off

Get Premium CKS Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Kenneth
7 months ago
I’m surprised it’s that simple to manage permissions.
upvoted 0 times
...
Denise
7 months ago
Totally agree, this is how RBAC works in Kubernetes!
upvoted 0 times
...
Anastacia
7 months ago
Wait, can you really create a role and role-binding like that?
upvoted 0 times
...
Tommy
7 months ago
Sounds straightforward, but what if the CSR gets denied?
upvoted 0 times
...
Romana
8 months ago
Just create the CSR with kubectl and approve it.
upvoted 0 times
...
Willard
8 months ago
I feel confident about creating the user and CSR, but I’m a bit uncertain about the namespace part for the role and role binding.
upvoted 0 times
...
Mee
8 months ago
For the kubectl auth command, I believe we need to check the permissions after creating the role and binding, but I might mix up the flags.
upvoted 0 times
...
Rosalyn
8 months ago
I think we had a similar question about roles and role bindings last week, but I can't recall the exact syntax for the RoleBinding.
upvoted 0 times
...
Ulysses
8 months ago
I remember we practiced creating a CSR and approving it, but I'm not sure about the exact commands for fetching the certificate.
upvoted 0 times
...
Theola
8 months ago
This seems like a good opportunity to demonstrate my Kubernetes knowledge. I'm confident I can complete all the tasks required - creating the user, CSR, approving the certificate, setting up the role and role binding, and verifying the permissions. I'll make sure to follow the instructions carefully.
upvoted 0 times
...
Kimbery
8 months ago
Okay, let me break this down step-by-step. First, I'll use kubectl to create the user and generate the CSR. Then I'll approve the CSR and fetch the certificate. Next, I'll create the role and the role binding as described. Finally, I'll verify the permissions using the kubectl auth command.
upvoted 0 times
...
Cory
8 months ago
Hmm, I'm a bit unsure about the steps here. I'll need to review the kubectl commands for creating the user, CSR, and approving the certificate. And then the role and role binding creation - I'll have to double-check the syntax for those.
upvoted 0 times
...
Diego
8 months ago
This question looks straightforward, I think I can handle it. I'll start by creating the user and the CSR, then approve the certificate. After that, I'll create the role and role binding as specified.
upvoted 0 times
...
Nan
9 months ago
Hmm, I'm not entirely sure about this one. Black box testing means the tester doesn't have access to the internal implementation, but I'm not sure if that means "complete" visibility or something else. I'll have to think about this a bit more.
upvoted 0 times
...
Veronika
9 months ago
This is a tricky one. I'll need to think carefully about the differences between Agile and PRINCE2 to determine where they blend best.
upvoted 0 times
...
Carman
9 months ago
I'm drawing a blank on this one. The options all sound kind of similar to me. I'll have to make an educated guess and hope for the best.
upvoted 0 times
...
Rosalia
1 year ago
As a Kubernetes admin, I'd be careful about approving random CSRs. Make sure you know who 'john' is and why they need those permissions before signing off!
upvoted 0 times
...
Haydee
1 year ago
Haha, I wonder if the developers who created the 'NEW_CRD' resource had a sense of humor when they named it. Anyway, this question looks straightforward enough.
upvoted 0 times
...
Avery
1 year ago
The explanation provided is very detailed and covers all the steps required. I think I have a good understanding of how to approach this type of scenario now.
upvoted 0 times
Gilbert
12 months ago
No problem at all. Happy to help anytime!
upvoted 0 times
...
Kiley
1 year ago
I will definitely reach out if I need more help. Thanks again for your assistance.
upvoted 0 times
...
Pearly
1 year ago
You're welcome! Let me know if you have any other questions or need further clarification.
upvoted 0 times
...
Layla
1 year ago
Thanks for the detailed explanation. It really helps to have all the steps laid out clearly.
upvoted 0 times
...
...
Samira
1 year ago
This is a great question that covers some important Kubernetes concepts. Creating a user, CSR, and then attaching permissions via a role and role binding is a common real-world task.
upvoted 0 times
Florinda
12 months ago
User3: Retrieve the certificate from the CSR with 'kubectl get csr/myuser -o yaml'.
upvoted 0 times
...
Micah
12 months ago
User2: Get the list of CSRs with 'kubectl get csr'.
upvoted 0 times
...
Clay
12 months ago
User1: Use kubectl to create a CSR and approve it.
upvoted 0 times
...
...
Melodie
1 year ago
Yes, but the explanation provided gives a clear step-by-step guide. We just need to follow it carefully and verify the permissions using the kubectl auth CLI command.
upvoted 0 times
...
Helene
1 year ago
I agree, it seems like we need to create a CSR, fetch the certificate, and set up roles and role bindings. It's a lot to remember.
upvoted 0 times
...
Melodie
1 year ago
I think this question is quite challenging. I'm not sure if I remember all the steps correctly.
upvoted 0 times
...

Save Cancel