Last updated：2021-09-29 22:05:17
Kingsoft Cloud Container Engine (KCE) supports the basic and role-based access control (RBAC) authorization modes. The RBAC mode allows you to manage the permissions on the Kubernetes resources of clusters in a more fine-grained manner.
If you want to upgrade the authorization mode of a cluster from basic to RBAC, perform the following operations with your Kingsoft Cloud account:
- During the upgrade of the authorization mode, the ClusterRoleBinding object is written to all your clusters. If one of the clusters is inaccessible, the upgrade fails. In this case, you cannot grant permissions in RBAC mode.
- After you upgrade to the RBAC mode, you cannot roll back to the basic authorization mode.
- After the RBAC mode is enabled, you can revoke permissions from or modify the permissions of your IAM users as required. For more information, seeManage the RBAC permissions of IAM users
Did you find the above information helpful?
Please give us your feedback.
Thank you for your feedback.