Big 11.11 Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

  1. Home
  2. Discussions
  3. Linux Foundation
  4. Kubernetes Security Specialist
  5. CKS Discussions
  6. CKS Exam Topic 2 Question 11 Discussion

Linux Foundation Certified Kubernetes Security Specialist (CKS) CKS Question # 11 Topic 2 Discussion

 Linux Foundation Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Linux Foundation Certified Kubernetes Security Specialist (CKS) CKS Question # 11 Topic 2 Discussion

CKS Exam Topic 2 Question 11 Discussion:
Question #: 11
Topic #: 2

You can switch the cluster/configuration context using the following command:

[desk@cli] $ kubectl config use-context prod-account 

Context:

A Role bound to a Pod's ServiceAccount grants overly permissive permissions. Complete the following tasks to reduce the set of permissions.

Task:

Given an existing Pod named web-pod running in the namespace database.

1. Edit the existing Role bound to the Pod's ServiceAccount test-sa to only allow performing get operations, only on resources of type Pods.

2. Create a new Role named test-role-2 in the namespace database, which only allows performing update operations, only on resources of type statuefulsets.

3. Create a new RoleBinding named test-role-2-bind binding the newly created Role to the Pod's ServiceAccount.

Note: Don't delete the existing RoleBinding.
Get Premium CKS Questions
Actual exam question for Linux Foundation CKS exam by Kairo83401 at Nov 9, 2025, 6:02:53 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next