...
| Code Block |
|---|
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: cloudaware-reader
rules:
- apiGroups: ["*"]
resources: ["*"]
verbs: ["get", "watch", "list"]
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: <SAMPLE-ROLE-BINDING>
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: cloudaware-reader
subjects:
- apiGroup: rbac.authorization.k8s.io
kind: User
name: <service<SERVICE-principalPRINCIPAL-objectOBJECT-id>ID> |
WHERE
in ClusterRoleBinding:
<SAMPLE-ROLE-BINDING> in metadata is a placeholder that needs to be replaced by your Cluster Role Binding name
<service<SERVICE-principalPRINCIPAL-objectOBJECT-id> ID> insubjects is a placeholder that needs to be replaced by your Azure Application Object ID
...