Argo CD supports a multi-tenant operation model. Cluster scoped Argo CD instance is the widely used approach wherein it uses a single service account to manage resources across multiple tenant namespaces and this brings in the security challenge of privilege escalation. When a cluster scoped Argo CD instance is used to manage resources across multiple tenant namespaces, it violates the principle of "least privilege" providing escalated privileges to all the tenants.

In this talk we will be looking at some of the best practices for handling privilege escalation in multi-tenant scenarios and how the recent feature of decoupling application syncs using a service account per tenant can be a real game changer in improving the security posture of Argo CD for mult-tenant scenarios.