Uploaded image for project: 'OpenShift Request For Enhancement'
  1. OpenShift Request For Enhancement
  2. RFE-4926

ocp-install binary should have minimal service account permission policy on Google Cloud platform

XMLWordPrintable

    • Icon: Feature Request Feature Request
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • None
    • Installer
    • None
    • None
    • Product / Portfolio Work
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      1. Proposed title of this feature request

      The  ocp-install binary should contain service accounts with minimal permissions on Google Cloud Platform

      2. What is the nature and description of the request?      
       The service account created by ocp-install  binary has  excessive permissions when scanned using prisma security tool on Google cloud platform.
      3. Why does the customer need this? (List the business requirements here   

      Customer expection is to have ocp-install binary should have minimal permissions on Google cloud platform so that it does not create any vulnerabilities on the system(As part of security check).
      4. List any affected packages or components.

      Google compute instance with IAM roles

              mak.redhat.com Marcos Entenza Garcia
              rhn-support-skanniha1 Sphoorthi Kanni Hanumantharya
              None
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                None
                None