This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

IAM Policies - Restric metrics, entities for namespace scope

Go to solution
patryk_ozimek2
Helper

‎12 Sep 2024 02:51 PM - last edited on ‎13 Sep 2024 07:23 AM by Community Team

Hi,

Currently we are working on creating IAM policies in order to restrict Grail data for only one namespace. With logs and events there is no problem (ALLOW storage:events:read, storage:logs:read where storage:k8s.namespace.name = "namespace-name";)

When it comes to the metrics or entities, even creating the security_context does not have the intended effect.
There is a possibilty that it doesn't work because we dont have metrics in Grail enabled.

Does anybody faced the same "issue"?

Best Regards
Patryk

Labels:
0 Kudos
Reply
1 REPLY 1

Go to solution
jaume_reverte
Dynatrace Advisor
Dynatrace Advisor

‎08 Oct 2024 04:29 PM

Hello Patryksp, 

Yes, for access management to the information stored in Grail to work, you need to have the information stored in Grail. 

Hope you a good monitoring!
Jaume Reverte
0 Kudos
Reply
Ask a question

Featured Posts