Authorization — Certified Kubernetes Administrator (CKA) Practice Questions
Authorization in Kubernetes determines whether an authenticated request is permitted to perform a specific action on a specific resource. The CKA exam focuses primarily on RBAC as the authorization mode, but candidates should also understand that other modes such as Node, ABAC, and Webhook exist and that the API server can run multiple modes simultaneously. Every API request passes through the authorization chain after authentication, and understanding this pipeline is necessary for diagnosing permission-denied errors during the troubleshooting sections. Candidates are expected to verify and reason about authorization decisions using kubectl auth can-i and by reading RBAC object definitions.
Free questions on authorization
What is the difference between a ClusterRole and a Role?
Free question · medium · full answer + explanation
What does RBAC stand for in Kubernetes?
Free question · easy · full answer + explanation
More authorization questions in the full bank
- Which RBAC verb allows reading pod logs? Unlock answer & explanation →
- What is Role vs ClusterRole? Unlock answer & explanation →
- An RBAC policy grants "create" on "pods" but a user still cannot create pods. What could be the issue? Unlock answer & explanation →