Default for --authorization-mode if --authorization-config not provided.

Study for the Kubernetes Certified Network Administrator Exam. Our test offers comprehensive flashcards, multiple-choice questions, and detailed explanations. Be confident for your exam!

Multiple Choice

Default for --authorization-mode if --authorization-config not provided.

Explanation:
Authorization decisions in the API server come from the chosen authorization modes. Some modes depend on external data sources or policy files (for example, Webhook needs a webhook config, ABAC uses a policy file). If you don’t provide that kind of configuration, those modes can’t operate. The API server then uses the mode that doesn’t require extra configuration by default, which is AlwaysAllow—meaning every request is permitted. So, without an authorization-config, the default behavior is to allow all requests. If you want strict control, you’d explicitly enable a mode like RBAC and provide the appropriate policies.

Authorization decisions in the API server come from the chosen authorization modes. Some modes depend on external data sources or policy files (for example, Webhook needs a webhook config, ABAC uses a policy file). If you don’t provide that kind of configuration, those modes can’t operate. The API server then uses the mode that doesn’t require extra configuration by default, which is AlwaysAllow—meaning every request is permitted. So, without an authorization-config, the default behavior is to allow all requests. If you want strict control, you’d explicitly enable a mode like RBAC and provide the appropriate policies.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy