Authorization
Administrative Access
For admin access, make sure that when using kubectl
or trying
to access the Veeam Kasten dashboard
with Token Authentication you authenticate with
a user that has a ClusterRoleBinding to the predefined k10-admin
role.
Limited Access
Non-admin users may be granted limited permissions to Veeam Kasten.
Read-only access to the dashboard config is granted by creating a
ClusterRoleBinding between the user and the predefined
k10-config-view
role. In addition, users may be granted operational
access to their applications by creating a RoleBinding to the
k10-basic
role in their application's namespace.
Additional RBAC Access
Veeam Kasten now supports a more flexible permissions model which allows scoping of user permissions to perform Veeam Kasten actions only within the context of specified applications.
Check out Veeam Kasten RBAC for more information.