K
Q

Kubernetes Dashboard Static Password FIle uer cannot list <resources>

5/18/2018

I had tried Access-control#admin-privileges to use dashboard and it works. Then I tried Static Password File to login dashboard.

I added --basic-auth-file= to /etc/kubernetes/manifests/kube-apiserver.yaml, added --authentication-mode=basic to dashboard; then restarted kubelet.

The content of passowrd file is something like this:

admin123,admin,admin

When I login dashboard as admin/admin identity, there is no common information but a lot of error messages shown:

persistentvolumeclaims is forbidden: User "admin" cannot list persistentvolumeclaims in the namespace "default"
configmaps is forbidden: User "admin" cannot list configmaps in the namespace "default"
...

Seems the privilege of admin user was not enough, did I miss anything?

-- gavinlin
kubernetes
kubernetes-dashboard

Similar Questions

Why should I specify service before deployment in a single Kubernetes configuration file?
VolumeClaimTemplates with subPath
kubectl bash completion doesn't work in ubuntu docker container
How to create k8s deployment file which will deploy based on architecture
How to create a network policy that matches Kubernetes API
Maistra ServiceMeshControlPlane and Mesh in same namespace/project on OpenShift4
Failed to pull image &quot;velero/velero-plugin-for-gcp:v1.1.0&quot; while installing Velero in GKE Cluster
Hazelcast doesn&#39;t connect to pods when using Headless Service

1 Answer

5/18/2018

If you use rbac, try to give admin a proper clusterrole, like 'view', or you can give admin priviledge in abac.jsonl file.

-- Kun Li
Source: StackOverflow