Permissions Required for Cluster Agent and Infrastructure Visibility

This page includes the permissions (RBAC authorization) that are created when Cluster Agent, Splunk AppDynamics Operator, and Infrastructure Visibility pods are deployed in a cluster.

Note: You do not require to add these permissions. These are created automatically during installation.

Cluster Agent

The get, list, and watch permissions are created when you deploy Cluster Agent for the following resources:

  • pods

  • pods/log

  • endpoints

  • persistentvolumeclaims

  • resourcequotas

  • nodes

  • events

  • namespaces

  • services

  • configmaps

  • secrets

  • replicationcontrollers

  • daemonsets

  • statefulsets

  • deployment

  • replicasets

  • jobs

  • nodes

  • deploymentconfigs

Splunk AppDynamics Operator

The following permissions are created when you deploy Splunk AppDynamics Operator:

ResourcesPermissions Required
pods

  • get

  • watch

  • list

  • delete

pods/log
endpoints
persistentvolumeclaims
resourcequotas
nodes
events
namespaces
services
  • get
  • list
  • watch
  • create
  • update
  • delete
  • patch
configmaps
secrets
deployments
replicasets
daemonsets
statefulsets
jobs
  • get
  • list
  • watch
Cluster-Agent
  • get
  • list
  • watch
  • create
  • update
  • delete
  • patch
Clusteragents/finalizers update
Clusteragents/status
  • get
  • update
  • patch
Infravizs
  • get
  • list
  • watch
  • create
  • update
  • delete
  • patch
Infraviz/status
  • get
  • update
  • patch

Infrastructure Visibility

The following permissions are created when you deploy Infrastructure Visibility:

ResourcesView/EditPermissions Required
Infravizs View
  • get
  • list
  • watch

Infravizs/status

 View get
Infravizs Edit
  • get
  • list
  • watch
  • create
  • update
  • delete
  • patch

Infraviz/status

 Edit get