From b6c7ff472e1dc4affb803e1dce37c8a4a4883987 Mon Sep 17 00:00:00 2001 From: Jennifer Travinski Date: Fri, 27 Aug 2021 11:54:26 -0400 Subject: [PATCH 1/3] Added table for manage nodes permissions --- .../rbac/cluster-project-roles/_index.md | 16 ++++++++++++++-- 1 file changed, 14 insertions(+), 2 deletions(-) diff --git a/content/rancher/v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md b/content/rancher/v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md index 2d61e06d057..9383e2d82aa 100644 --- a/content/rancher/v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md +++ b/content/rancher/v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md @@ -39,13 +39,25 @@ The following table lists each built-in custom cluster role available and whethe | Manage Cluster Backups             | ✓ | | | Manage Cluster Catalogs | ✓ | | | Manage Cluster Members | ✓ | | -| Manage Nodes | ✓ | | +| Manage Nodes (see table below) | ✓ | | | Manage Storage | ✓ | | -| View All Projects | ✓ | | +| View All Projects | ✓ | | | View Cluster Catalogs | ✓ | ✓ | | View Cluster Members | ✓ | ✓ | | View Nodes | ✓ | ✓ | +#### Manage Nodes Permissions + +The following table lists the permissions available for the Manage Nodes role in `RKE` and `RKE2`. + +| Manage Nodes Permissions | RKE | RKE2 | +|--------------------------------------------|-------- |--------- | +| SSH Access | ✓ | ✓ | +| Delete Nodes | ✓ | ✓ | +| Scale Clusters Up and Down | ✓ | | +| Scale Up/Down with Edit Cluster Permission | | ✓ | +
+ For details on how each cluster role can access Kubernetes resources, you can go to the **Global** view in the Rancher UI. Then click **Security > Roles** and go to the **Clusters** tab. If you click an individual role, you can refer to the **Grant Resources** table to see all of the operations and resources that are permitted by the role. > **Note:** From 4e7ebd0ad9c896d7c67c352fd43eebc16a9503ef Mon Sep 17 00:00:00 2001 From: Jennifer Travinski Date: Fri, 27 Aug 2021 16:41:44 -0400 Subject: [PATCH 2/3] Made edits to table --- .../rbac/cluster-project-roles/_index.md | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/content/rancher/v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md b/content/rancher/v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md index 9383e2d82aa..a75afde654e 100644 --- a/content/rancher/v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md +++ b/content/rancher/v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md @@ -39,7 +39,7 @@ The following table lists each built-in custom cluster role available and whethe | Manage Cluster Backups             | ✓ | | | Manage Cluster Catalogs | ✓ | | | Manage Cluster Members | ✓ | | -| Manage Nodes (see table below) | ✓ | | +| Manage Nodes [(see table below)](#Manage-Nodes-Permissions)| ✓ | | | Manage Storage | ✓ | | | View All Projects | ✓ | | | View Cluster Catalogs | ✓ | ✓ | @@ -48,14 +48,14 @@ The following table lists each built-in custom cluster role available and whethe #### Manage Nodes Permissions -The following table lists the permissions available for the Manage Nodes role in `RKE` and `RKE2`. +The following table lists the permissions available for the `Manage Nodes` role in RKE and RKE2. -| Manage Nodes Permissions | RKE | RKE2 | -|--------------------------------------------|-------- |--------- | -| SSH Access | ✓ | ✓ | -| Delete Nodes | ✓ | ✓ | -| Scale Clusters Up and Down | ✓ | | -| Scale Up/Down with Edit Cluster Permission | | ✓ | +| Manage Nodes Permissions | RKE | RKE2 | +|-----------------------------|-------- |--------- | +| SSH Access | ✓ | ✓ | +| Delete Nodes | ✓ | ✓ | +| Scale Clusters Up and Down | ✓ | * | +***For RKE2, you must have Edit Cluster permission to be able to scale clusters up and down.**
For details on how each cluster role can access Kubernetes resources, you can go to the **Global** view in the Rancher UI. Then click **Security > Roles** and go to the **Clusters** tab. If you click an individual role, you can refer to the **Grant Resources** table to see all of the operations and resources that are permitted by the role. From 7285f0945461a64a3732fbff426e9da6653d3d84 Mon Sep 17 00:00:00 2001 From: Jennifer Travinski Date: Fri, 27 Aug 2021 17:22:02 -0400 Subject: [PATCH 3/3] Reworded edit cluster permission --- .../v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/content/rancher/v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md b/content/rancher/v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md index a75afde654e..3bbf60130b1 100644 --- a/content/rancher/v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md +++ b/content/rancher/v2.6/en/admin-settings/rbac/cluster-project-roles/_index.md @@ -55,7 +55,7 @@ The following table lists the permissions available for the `Manage Nodes` role | SSH Access | ✓ | ✓ | | Delete Nodes | ✓ | ✓ | | Scale Clusters Up and Down | ✓ | * | -***For RKE2, you must have Edit Cluster permission to be able to scale clusters up and down.** +***In RKE2, you must have permission to edit a cluster to be able to scale clusters up and down.**
For details on how each cluster role can access Kubernetes resources, you can go to the **Global** view in the Rancher UI. Then click **Security > Roles** and go to the **Clusters** tab. If you click an individual role, you can refer to the **Grant Resources** table to see all of the operations and resources that are permitted by the role.