你当前正在访问 Microsoft Azure Global Edition 技术文档网站。如果需要访问由世纪互联运营的 Microsoft Azure 中国技术文档网站，请访问 https://docs.azure.cn。

ContainerServiceBuiltInRole.AzureKubernetesServiceRbacReader Property

Reference

Definition

Namespace:: Azure.Provisioning.ContainerService

Assembly:: Azure.Provisioning.ContainerService.dll

Package:: Azure.Provisioning.ContainerService v1.0.0-beta.2

Source:: ContainerServiceBuiltInRole.cs

Important

Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.

Allows read-only access to see most objects in a namespace. It does not allow viewing roles or role bindings. This role does not allow viewing Secrets, since reading the contents of Secrets enables access to ServiceAccount credentials in the namespace, which would allow API access as any ServiceAccount in the namespace (a form of privilege escalation). Applying this role at cluster scope will give access across all namespaces.

public static Azure.Provisioning.ContainerService.ContainerServiceBuiltInRole AzureKubernetesServiceRbacReader { get; }

static member AzureKubernetesServiceRbacReader : Azure.Provisioning.ContainerService.ContainerServiceBuiltInRole

Public Shared ReadOnly Property AzureKubernetesServiceRbacReader As ContainerServiceBuiltInRole

Property Value

ContainerServiceBuiltInRole

Applies to

通过

ContainerServiceBuiltInRole.AzureKubernetesServiceRbacReader Property

Definition

Property Value

Applies to

其他资源