Back to Challenges
mediumRBAC & Security
Privilege Denied
A legacy application that used to run with special privileges now fails to start. Security policies have been enforced, and the deployment needs updating.
20 min
Initial Situation
A legacy application was deployed and worked fine initially. After implementing Pod Security Standards at the cluster level, the pod fails to start. The error message shows: "Error: container has runAsNonRoot and image will run as root". The deployment is configured to run as root, which is now blocked by security policies. The pod also writes to the root filesystem, which is not allowed.
Your Mission0/1
Loading validation status...
Start this challenge in your local Kubernetes cluster:
$ kubeasy challenge start privilege-denied