Skip to main content
Version: 1.6.x

Istio Internal Access Bindings

DEPRECATED: use Access Bindings instead.

IstioInternalAccessBindings is an assignment of roles to a set of users or teams to access resources under a Istio internal group. The user or team information is obtained from an LDAP server that should have been configured as part of Service Bridge installation. Note that a IstioInternalAccessBinding can be created or modified only by users who have SET_POLICY permission on the Istio internal group.

The following example assigns the istiointernal-admin role to users alice, bob, and members of the istiointernal-ops team for istio internal group g1 under workspace w1 owned by the tenant mycompany. Use fully-qualified name (fqn) when specifying user and team

kind: IstioInternalAccessBindings
organization: myorg
tenant: mycompany
workspace: w1
group: g1
- role: rbac/istiointernal-admin
- user: organization/myorg/users/alice
- user: organization/myorg/users/bob
- team: organization/myorg/teams/istiointernal-ops


IstioInternalAccessBindings assigns permissions to users of istio internal groups.

FieldDescriptionValidation Rule


List of tetrateio.api.tsb.rbac.v2.Binding
The list of allowed bindings configures the different access profiles that are allowed on the resource configured by the policy.