In CKA practice tests, Security - Cluster Roles :
A new user
michelle joined the team. She will be focusing on the
nodes in the cluster. Create the required ClusterRoles and ClusterRoleBindings so she gets access to the
After creating the clusterrole & cluster rolebindings, on executing the below command as root user it is able to get the nodes but gives error for user michelle.
controlplane $ kubectl get nodes --as user=michelle
Error from server (Forbidden): nodes is forbidden: User “user=michelle” cannot list resource “nodes” in API group “” at the cluster scope
I was expecting to see that michelle has been granted permissions to access nodes (get, list, watch, delete, create) based on the clusterrole & clusterrolebindings created, but i am getting the above error. Same error with the answers provided in /var/answers.
Please let me know if i am missing something.