Kubectl Readonly Access
Following are the steps to create a readonly access in a Kubernetes cluster.
Save the below content as a file name service-account-readonly-setup.yaml
Run
kubectl apply -f service-account-readonly-setup.yaml
. This will create a new service account with readonly permission.Run
kubectl -n kube-system describe secret duplo-readonly-token
to fetch the token. This can be used in DuploCloud to import the cluster as a readonly infrastructure.With the above token, EKS server url and certificate-authority-data you can create a kubeconfig as follows. The server url and certificate-authority-data can be found in the cloud console under the cluster settings.
Last updated