Rootless Kubernetes


This is exciting… targeting 1.20 for an alpha (meaning not enabled by default, but one flag away):

More details here:

with something close to home:
Story 2: HPC cluster

A user wants to deploy a Kubernetes cluster using shared HPC machines to run scientific research workloads.

However, the machine administrator does not want to allow the user to gain the root privileges, because the admin thinks that the user may accidentally break other users’ environments.

And yet, the admin hesitates to deploy a shared Kubernetes cluster and to create RBAC-restricted accounts for users, because user management in Kubernetes is very difficult.

The user would want this KEP to be implemented so that he/she can deploy Kubernetes without convincing the admin.

It’s a tight deadline for 1.20 but let’s see.


1 Like