ServiceAccounts
Provide pod-level identities for Kubernetes API access using ServiceAccounts and projected tokens.
Full content coming soon. This lesson is being written.
This lesson covers ServiceAccounts:
- ServiceAccount: an identity for processes running in a Pod
- Default ServiceAccount per namespace
- Disabling auto-mount:
automountServiceAccountToken: false - Projected service account tokens (bound tokens with expiry)
- ServiceAccount RBAC: binding roles to service accounts
- Workload Identity: GKE, EKS, AKS cloud provider integration
- IRSA (IAM Roles for Service Accounts) on EKS
Check back soon for the full content.