KubeasyKubeasy

Master Kubernetes through hands-on challenges and real-world scenarios. Free, open-source learning platform for developers.

Product

  • Challenges
  • Documentation
  • CLI Tool

Community

  • GitHub
  • Discord
  • Contribute

Legal

  • Privacy
  • Terms
  • License

© 2025 Kubeasy. Open source under Apache License 2.0.

KubeasyKubeasyKubeasy
  • Challenges
  • Blog
  • Documentation
Sign InTry Demo
Back to Challenges
mediumRBAC & SecurityBuild

Grant Access

Your app needs to talk to the Kubernetes API. But by default, pods can't do much - you have to grant permissions explicitly.

20 min
Initial Situation

A monitoring application needs to list pods in its namespace. The app uses a dedicated ServiceAccount, but it has no permissions. When the app tries to list pods, it gets "Forbidden" errors.

Your Mission0/2
Loading validation status...

Start this challenge in your local Kubernetes cluster:

$ kubeasy challenge start grant-access