You can group Kubernetes resources in a scope. The scope target is Applications.
Procedure
- On the left navigation pane, do one of the following depending on your system configuration and role:
- If you have the Kubernetes Security DevOps or SecOps role and your system has only the Container security feature, click .
- If you have any other role and your system has Container security and other Carbon Black Cloud features, click .
- Click Add Scope.
- Enter a Name for the scope.
- For target resources, select Applications. This scope will target applications in specific namespaces. A policy can be enforced during the build, deployment, and execution phases.
- Click Next.
- Select the namespaces from the dropdown menu.
- Click Save.
The scope is ready for use in a Kubernetes Hardening Policy.