Which command links the secret quayio to the builder service account so S2I can use it?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Prepare for the Red Hat Openshift Developer EX288 Exam. Study with comprehensive quizzes and flashcards. Each question includes hints and explanations to enhance your understanding. Ace your exam with confidence!

Multiple Choice

Which command links the secret quayio to the builder service account so S2I can use it?

Explanation:
OpenShift needs the builder’s service account to have permission to pull the base image from a registry for S2I to run using the credentials in your quay.io secret. The way to do this is by binding the image-puller role to that specific service account in the namespace where the builder operates. The command that attaches the image-puller role to the service account named myphp in the otherphp namespace does exactly that: it grants the necessary image pull permission to the builder’s service account in the correct scope, enabling S2I to access the private quay.io image using the secret. The other options either try to create or remove bindings without tying them to the specific service account in the right namespace, or refer to removing access, which would not enable the build to proceed. This targeted role binding is the appropriate step to authorize image pulls needed by the builder during the S2I process.

OpenShift needs the builder’s service account to have permission to pull the base image from a registry for S2I to run using the credentials in your quay.io secret. The way to do this is by binding the image-puller role to that specific service account in the namespace where the builder operates. The command that attaches the image-puller role to the service account named myphp in the otherphp namespace does exactly that: it grants the necessary image pull permission to the builder’s service account in the correct scope, enabling S2I to access the private quay.io image using the secret.

The other options either try to create or remove bindings without tying them to the specific service account in the right namespace, or refer to removing access, which would not enable the build to proceed. This targeted role binding is the appropriate step to authorize image pulls needed by the builder during the S2I process.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy