RBAC with Service identities and K8 Roles

beatrausch · February 5, 2022, 6:34pm

Hi,

I am looking for an approach to build RBAC for inter service communication with mTLS enabled by using Istio’s service identities e.g. a K8 service accounts and its role bindings. Is it possible to achieve this with Istio?

As far as I understood the early versions of Istio it was possible by using a ServiceRole , ServiceRoleBinding

Regards

liminwang · February 7, 2022, 7:07am

ServiceRole and ServiceRoleBinding has been replaced by Istio authorization policy (Istio / Security). Istio authorization policy should be able to satisfy your requirements on authorzing Istio’s service identities.

Topic		Replies	Views
Istio rbac based on service name	5	564	September 20, 2019
Istio RBAC - v1.1.5 - K8S Security	3	497	June 10, 2019
Restrict access from one service to another Security	12	7077	April 21, 2023
Applications Roles and RBAC	1	593	December 14, 2019
Certificates authentication Security	4	593	January 31, 2019

RBAC with Service identities and K8 Roles

Related topics