portainer-docs/admin/environments/policies/kubernetes-policies/kubernetes-rbac-policy.md

metaLinks

metaLinks
alternates https://app.gitbook.com/s/j6QEqM3Sd94bdPsX4HaN/admin/environments/policies/kubernetes-policies/kubernetes-rbac-policy

Create a Kubernetes RBAC policy

Define a policy based on access permissions and role-based access control for Kubernetes clusters.

To create a Kubernetes RBAC policy, in the menu, under Environment-related, select Policies and then select Create policy. From the policy type list, navigate to the Kubernetes > RBAC section, select Custom then select Continue to begin configuring the policy.

{% hint style="info" %} Currently, only custom RBAC policies can be created. Future improvements to the policies feature will introduce policy templates. {% endhint %}

Field/Option	Overview
Name	Define a name for this policy.
Environment groups	Select one or more Kubernetes environment groups from the dropdown menu. If the selected group is already included in an existing policy, a warning icon will appear next to the group name.
Users/teams	Select one or more users or teams from the dropdown menu.
Role	Select the role you want to assign to the users or teams. If you select a namespace-scoped role, a Namespaces field will appear, allowing you to pick one or more existing namespaces, or to type a name to add a new namespace.

Click Add Access to add a user or team to the policy. You can add multiple users or teams, and each entry appears in the Access list. When you have finished adding access, click Create policy. A confirmation screen displays the changes being made and any existing policy that will be replaced. Click Confirm to acknowledge the changes and create the policy.