kmsunmin.com | Kubernetes Security Context

Security Contexts

We can configure security at a pod level. This will allow the settings to carry over to all the containers within the pod.

If you have security settings on a container, then the container setting will override the pod-level setting.

How to configure Security Context

# pod-definition yaml file
apiVersion: v1
kind: Pod
metadata:
  name: web-pod
spec:
  securityContext:
    runAsUser: 1000

  containers:
    - name: ubuntu
      image: ubuntu
      command: ["sleep", "3600"]
      # container-specific setting
      securityContext:
        runAsUser: 1001
        capabilities:
          # Capabilities are only supported at the container level (not at the pod level)
          add: ["MAC_ADMIN"]

References

KodeKloud: CKAD course

Kubernetes Security Context

created: Wed, 09 Apr 2025 13:31:17 -0400

updated: Wed, 04 Jun 2025 15:40:23 -0400

tags: kubernetes security

Security Contexts

How to configure Security Context

References