Google Distributed Cloud 會將 Pod 部署至具有提升RBAC 權限的節點,例如修改所有 Deployment 和讀取所有叢集密鑰的權限。Google Distributed Cloud 必須取得這些權限才能正常運作。
下表列出所有具備提升權限的 Google Distributed Cloud 元件:
aisanet-operatoranthos-cluster-operatoranthos-multinet-controllercap-controller-managercapi-controller-managercapi-kubeadm-bootstrap-controller-managercdi-operatorcert-manager-cainjectorcert-manager-webhookcert-managercluster-metrics-webhookcsi-snapshot-controlleristio-ingressistiodkube-state-metricslocalpvmetallb-controllermetrics-server-operatormetrics-servernetwork-controller-managersp-anthos-static-provisionerstackdriver-operatorvirt-apivirt-controllervirt-handlervirt-operatorvm-controller-controller-managervmruntime-controller-manager