Cluster Roles and Role Bindings
The resources that we create on the cluster can be separated and isolated from each other using Namespaces then these resources are said to be name scoped but the same cannot be said for the nodes, as these are cluster scoped
The cluster roles allow the users to access the cluster wide resources such as Worker Node and Persistent Volumes (PV) & Persistent Volume Claims (PVC) , we can create roles such as Cluster Admin and Storage Admin who can create, delete and view nodes and PVs respectively
Similar to the Role Based Access Control these have Cluster Role and Cluster Role Bindings objects where we create the role and bind the users to these roles
Cluster Role and Namespaced Resources
When you create a role with access to namespace resources such as
pods,deploymentsthese users will have access to these resources in all namespaces