# Managing Secrets and ConfigMaps access for readonly users (AWS and GCP)

Configure readonly user access to both Kubernetes Secrets and ConfigMaps using the **AllowReadonlyK8sSecrets** flag. This setting applies to all readonly users, whether they are Administrators, Tenants, or Users.

1. From the DuploCloud Portal, navigate to **Administrator** -> **Systems Settings**.
2. Select the **System Config** tab, and click **Add**. The **Add Config** pane displays.<br>

   <div align="left"><figure><img src="https://2471407984-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F68cb0s9ce5UIUKWPuYs8%2Fuploads%2F3LvVYPpBBXnhgkwHupZE%2Fadd%20config%20secret%20access.png?alt=media&#x26;token=c8c0faaf-75cb-4c1f-99c5-91ba52459870" alt="" width="416"><figcaption><p>The <strong>Add Config</strong> pane</p></figcaption></figure></div>
3. In the **Config Type** list box, select **AppConfig**.
4. In the **Key** list box, select **Allow Readonly Users to view Kubernetes Secrets**.
5. In the **Value** field, enter **True** or **False**. A true value allows readonly users to view Kubernetes Secrets and ConfigMaps. A false value prohibits readonly users from viewing Kubernetes Secrets and ConfigMaps.
6. Click **Submit**. Readonly access to sensitive data in Kubernetes Secrets and ConfigMaps is configured.

<figure><img src="https://2471407984-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F68cb0s9ce5UIUKWPuYs8%2Fuploads%2F5DDpNZKiKER485S9OEEW%2Fread%20only.png?alt=media&#x26;token=f3d05f67-bbfc-41c5-a628-64743cb562a9" alt=""><figcaption><p>The <strong>System Config</strong> page with the <strong>AllowReadonlyK8sSecrets</strong> flag set to False</p></figcaption></figure>