CNCF-hosted Co-located Events Europe 2025 taking place on 1 April. This event is happening in person at Excel Londonin London, England. The Sched app allows you to build your schedule, but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2025, and have an All-Access pass in order to participate in the sessions.
To view the full event schedule for a specific CNCF-hosted Co-located event, you can use the right-hand navigation bar to sort and filter.
Argo CD supports a multi-tenant operation model. Cluster scoped Argo CD instance is the widely used approach wherein it uses a single service account to manage resources across multiple tenant namespaces and this brings in the security challenge of privilege escalation. When a cluster scoped Argo CD instance is used to manage resources across multiple tenant namespaces, it violates the principle of "least privilege" providing escalated privileges to all the tenants.
In this talk we will be looking at some of the best practices for handling privilege escalation in multi-tenant scenarios and how the recent feature of decoupling application syncs using a service account per tenant can be a real game changer in improving the security posture of Argo CD for mult-tenant scenarios.
