RBAC with Service identities and K8 Roles


I am looking for an approach to build RBAC for inter service communication with mTLS enabled by using Istio’s service identities e.g. a K8 service accounts and its role bindings. Is it possible to achieve this with Istio?

As far as I understood the early versions of Istio it was possible by using a ServiceRole , ServiceRoleBinding


ServiceRole and ServiceRoleBinding has been replaced by Istio authorization policy (Istio / Security). Istio authorization policy should be able to satisfy your requirements on authorzing Istio’s service identities.