Service Account Security: Defaults and Permissions
Locking down service accounts requires disabling auto-mounted tokens, restricting default service account permissions, and using projected bound tokens where API access is genuinely needed.
Domain: Cluster Hardening (15% of exam)
Sign in to access this lesson
Create a free account or sign in to enroll in the CKS — Certified Kubernetes Security Specialist course and access all 25 lessons.
CKS — Certified Kubernetes Security Specialist
25 lessons