Anonymous Requests
It controls whether an anonymous request is allowed to access the secure port of the API server. Requests that are not rejected by other identity authentication methods are treated as anonymous requests. Anonymous requests are given a username of system:anonymous, and a group name of system:unauthenticated.
Value Range
- false: An anonymous request is not allowed.
- true: An anonymous request is allowed.
Default Value
false
Modifiable
Yes
Scope
CCE standard and CCE Turbo clusters
Suggestions
In anonymous access (without identity credentials) scenarios, such as when some queries are performed during the use of kubeadm, allow anonymous access as required.
In anonymous access scenarios, strictly control the RBAC permission of the users (system:anonymous) and groups (system:unauthenticated) to avoid security issues caused by excessive access permissions granted to them.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
