New Year Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

  1. Home
  2. Discussions
  3. Linux Foundation
  4. Kubernetes Security Specialist
  5. CKS Discussions
  6. CKS Exam Topic 1 Question 5 Discussion

Linux Foundation Certified Kubernetes Security Specialist (CKS) CKS Question # 5 Topic 1 Discussion

 Linux Foundation Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Linux Foundation Certified Kubernetes Security Specialist (CKS) CKS Question # 5 Topic 1 Discussion

CKS Exam Topic 1 Question 5 Discussion:
Question #: 5
Topic #: 1

CKS Question 5

Context

A Role bound to a Pod's ServiceAccount grants overly permissive permissions. Complete the following tasks to reduce the set of permissions.

Task

Given an existing Pod named web-pod running in the namespace security.

Edit the existing Role bound to the Pod's ServiceAccount sa-dev-1 to only allow performing watch operations, only on resources of type services.

Create a new Role named role-2 in the namespace security, which only allows performing update

operations, only on resources of type namespaces.

Create a new RoleBinding named role-2-binding binding the newly created Role to the Pod's ServiceAccount.

CKS Question 5
Get Premium CKS Questions
Actual exam question for Linux Foundation CKS exam by Blaise1861 at Nov 9, 2025, 6:32:19 PM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next