Summary
In this chapter, we explored the security of the Kubernetes Dashboard in detail. First, we walked through the architecture and how the dashboard passes your identity information on to the API server. We then explored how the dashboard gets compromised, and finally we detailed how to correctly deploy the dashboard securely.
With this knowledge, you can now provide a secured tool to your users. Many users prefer the simplicity of accessing the dashboard via a web browser. Adding multi-factor authentication adds an additional layer of security and peace of mind. When your security team questions the security of the dashboard, you'll have the answers needed to satisfy their concerns.
The previous three chapters focused on the security of the Kubernetes APIs. Next, in Chapter 8, Extending Security Using Open Policy Agent, we'll explore securing the soft underbelly of every Kubernetes deployment, nodes!