12 Sep 2024 02:51 PM - last edited on 13 Sep 2024 07:23 AM by MaciejNeumann
Hi,
Currently we are working on creating IAM policies in order to restrict Grail data for only one namespace. With logs and events there is no problem (ALLOW storage:events:read, storage:logs:read where storage:k8s.namespace.name = "namespace-name";)
When it comes to the metrics or entities, even creating the security_context does not have the intended effect.
There is a possibilty that it doesn't work because we dont have metrics in Grail enabled.
Does anybody faced the same "issue"?
Best Regards
Patryk
Solved! Go to Solution.
08 Oct 2024 04:29 PM
Hello Patryksp,
Yes, for access management to the information stored in Grail to work, you need to have the information stored in Grail.