Define who has access to each resource in your organization using role-based access control.
VMware Tanzu Mission Control uses secure-by-default, role-based access control (RBAC) to manage user permissions at each level of the hierarchical structure for your organization. Each object is protected by an access policy that defines who has access to that resource, and these policies are inherited down through the organizational hierarchy. For more information, see Access Control in VMware Tanzu Mission Control Concepts.
In addition to the built-in roles provided by Tanzu Mission Control, you can create custom roles from a set of built-in permissions to suit the needs of your organization.
You can view and manage the access policies for workload clusters and namespaces through the Access page in the
Tanzu Mission Control console. However, the access policies for some objects are managed on other pages.
- Access policies for credentials are managed on the Access tab of the Administration page.
- Access policies for management clusters and their provisioners are managed on the Access tab of the management cluster detail page.