Role-Based Access Control (RBAC) is the practice of managing privileged access to infrastructure through a central directory of users, roles, and teams. Authorization is granted to groups (or roles) within a company directory. This allows individuals to access secured infrastructure by simply authenticating their identity, usually through a Single Sign-on (SSO) solution tied to the directory.
Using RBAC instead of individually-managed authorization and authentication methods (such as SSH keys or VPN logins) means companies can now control user group permissions within their organization but also grant controlled and seamless access to third-party teams. This is useful for:
Company-wide compliance teams overseeing multiple infrastructure and engineering groups who use both Kubernetes and SSH.
Manage service providers (MSPs) that manage Kubernetes and generic server clusters for clients.
Remote support teams from software vendors who wish to manage remote on-site Kubernetes clusters.
Internet-of-Things (IoT) edge cloud management from a centralized location.