Difference between revisions of "Kubernetes Pod Security Admission (PSA)"
Jump to navigation
Jump to search
↑ https://ranchermanager.docs.rancher.com/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/pod-security-standards
(→News) |
|||
(8 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
+ | [[Kubernetes v1.25]] (Aug 2022, stable) | ||
+ | |||
* https://kubernetes.io/docs/concepts/security/pod-security-admission/ | * https://kubernetes.io/docs/concepts/security/pod-security-admission/ | ||
− | [[Kubernetes v1.25]] (Aug 2022 | + | [[Pod Security Standards (PSS)]] and [[Pod Security Admission (PSA)]] define security restrictions for a broad set of workloads since [[Kubernetes v1.23]] (Dec 2021), and replaced [[Pod Security Policies (PSP)]] since [[Kubernetes v1.25]] (Aug 2022). PSS define security levels for workloads. PSAs describe requirements for pod security contexts and related fields. PSAs reference PSS levels to define security restrictions. <ref>https://ranchermanager.docs.rancher.com/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/pod-security-standards</ref> |
+ | |||
+ | |||
+ | [[pod-security.kubernetes.io]] | ||
enforce | enforce | ||
Line 9: | Line 14: | ||
* [[Certified Kubernetes Security Specialist (CKS)]] | * [[Certified Kubernetes Security Specialist (CKS)]] | ||
* <code>[[pod-security.kubernetes.io/]]</code> | * <code>[[pod-security.kubernetes.io/]]</code> | ||
+ | * [[Pod Security Standards (PSS)]] | ||
+ | * <code>[[global.cattle.psp.enabled]]</code> | ||
== News == | == News == | ||
− | * Aug 2022 Pod Security Admission Controller in Stable https://kubernetes.io/blog/2022/08/25/pod-security-admission-stable/ | + | * Aug 2022 [[Kubernetes v1.25]]: Pod Security Admission Controller (PSA) in Stable https://kubernetes.io/blog/2022/08/25/pod-security-admission-stable/ |
== See also == | == See also == |
Latest revision as of 08:54, 26 January 2024
Kubernetes v1.25 (Aug 2022, stable)
Pod Security Standards (PSS) and Pod Security Admission (PSA) define security restrictions for a broad set of workloads since Kubernetes v1.23 (Dec 2021), and replaced Pod Security Policies (PSP) since Kubernetes v1.25 (Aug 2022). PSS define security levels for workloads. PSAs describe requirements for pod security contexts and related fields. PSAs reference PSS levels to define security restrictions. [1]
pod-security.kubernetes.io
enforce audit warn
Related[edit]
- Certified Kubernetes Security Specialist (CKS)
pod-security.kubernetes.io/
- Pod Security Standards (PSS)
global.cattle.psp.enabled
News[edit]
- Aug 2022 Kubernetes v1.25: Pod Security Admission Controller (PSA) in Stable https://kubernetes.io/blog/2022/08/25/pod-security-admission-stable/
See also[edit]
- Kubernetes Pod Security Admission (PSA),
pod-security.kubernetes.io
- Kubernetes security, OPA, EKS security, PSA, PSS, CKS,
SecurityContext
, Trivy, KubeBench, Kubernetes Admission Controllersadmissionregistration.k8s.io
, Hardeneks, Gatekeeper (Kubernetes),kubernetes.io/enforce-mountable-secrets
, Auditing
Advertising: