Search…
Resources and Permissions
This section describes the different resources that TrilioVault for Kubernetes accesses within the Kubernetes cluster.

Job Permissions

Please refer to the following tabs for a list of resources and permissions that TrilioVault for Kubernetes components and jobs access.
ControlPlane/Webhook/Exporter/TargetValidation/BackupCleaner/ResourceCleaner Job/Target Browser/Web-Backend/WebUI/Ingress-Controller
Snapshot/MetaData Upload/Data Upload Job/Hook Execution Job/Retention Job
Metamover Validation/Data Restore/Metamover Restore Job/Hook Execution Job
Conversion Server
API Group
Resources/ResourceName
Verbs
triliovault.trilio.io
*
*
*
*
get, list, watch
apiextensions.k8s.io
customresourcedefinitions
get, list, watch, create
core
serviceaccounts
services
services/finalizers
events
Secrets
persistentvolumeclaims
*
core
pods
services
services/finalizers
endpoints
events
configmaps
secrets
get, list, watch
core
namespaces
get, list, watch, create, update
core
persistentvolumes
get, list, watch, update
admissionregistration.k8s.io
Validatingwebhookconfigurations
mutatingwebhookconfigurations
*
batch
job
*
apps
statefulsets
daemonsets
replicasets
deployments/finalizers
get, list, watch
apps
deployments
get, list, watch, create, update, delete
extensions
cronjobs
*
snapshot.storage.k8s.io
*
*
rbac.authorization.k8s.io
clusterrole
clusterrolebindings
*
APIGroup
Resources/Resource Name
*
triliovault.trilio.io
*
*
*
*
get, list, watch
apiextensions.k8s.io
customresourcedefinitions
get, list, watch
core
pods
pods/log
pods/exec
services
services/finalizers
endpoints
events
configmaps
Secrets
persistentvolumeclaims
serviceaccounts
get, list, watch
apps
statefulsets
daemonsets
replicasets
deployments
deployments/finalizers
get, list, watch
security.openshift.io
securitycontextconstraints
privileged
use
APIGroup
Resources/ResourceNames
Verbs
triliovault.trilio.io
*
*
*
*
get, list, watch, create, patch
apiextensions.k8s.io
customresourcedefinitions
get, list, watch, create, patch
core
pods
pods/log
pods/exec
services
services/finalizers
endpoints
events
configmaps
Secrets
Persistentvolumeclaims
serviceaaccounts
get, list, watch, create, patch
apps
statefulsets
daemonsets
replicasets
deployments
deployments/finalizers
get, list, watch, create, patch
security.openshift.io
securitycontextconstraints
privileged
use
API Group
Resources/ResourceName
Verbs
apiextensions.k8s.io
customresourcedefinitions
get, list, watch, patch, update
core
secrets
get, list, watch, patch, update
Last modified 1mo ago
Copy link