diff --git a/.vuepress/config-sidebar.js b/.vuepress/config-sidebar.js
index dc0f7aa..f785600 100644
--- a/.vuepress/config-sidebar.js
+++ b/.vuepress/config-sidebar.js
@@ -427,6 +427,7 @@ module.exports = {
               collapsable: true,
               children: [
                 'k8s-advanced/sec/kuboard',
+                'k8s-advanced/sec/rbac/list-namespace.html',
                 'k8s-advanced/sec/rbac/logs.html',
                 'k8s-advanced/sec/rbac/api',
                 'k8s-advanced/sec/rbac/default',
diff --git a/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524093144670.png b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524093144670.png
new file mode 100644
index 0000000..c2c268e
Binary files /dev/null and b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524093144670.png differ
diff --git a/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524093756988.png b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524093756988.png
new file mode 100644
index 0000000..81d8e74
Binary files /dev/null and b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524093756988.png differ
diff --git a/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524093943063.png b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524093943063.png
new file mode 100644
index 0000000..f5a39e7
Binary files /dev/null and b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524093943063.png differ
diff --git a/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524093948089.png b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524093948089.png
new file mode 100644
index 0000000..f5a39e7
Binary files /dev/null and b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524093948089.png differ
diff --git a/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524094216757.png b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524094216757.png
new file mode 100644
index 0000000..85ed596
Binary files /dev/null and b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524094216757.png differ
diff --git a/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524094918957.png b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524094918957.png
new file mode 100644
index 0000000..e5dc609
Binary files /dev/null and b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524094918957.png differ
diff --git a/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524095525170.png b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524095525170.png
new file mode 100644
index 0000000..6d6c47d
Binary files /dev/null and b/learning/k8s-advanced/sec/rbac/list-namespace.assets/image-20200524095525170.png differ
diff --git a/learning/k8s-advanced/sec/rbac/list-namespace.md b/learning/k8s-advanced/sec/rbac/list-namespace.md
new file mode 100644
index 0000000..c722a35
--- /dev/null
+++ b/learning/k8s-advanced/sec/rbac/list-namespace.md
@@ -0,0 +1,83 @@
+---
+vssueId: 175
+layout: LearningLayout
+sharingTitle: Kubernetes的RBAC授权从未如此简单
+description: Kubernetes教程_Role-based_access_control_(RBAC)基于角色的访问控制_是Kubernetes中支持的一种授权方式。本文描述了如何使用Kuboard管理RBAC授权规则，并授权用户访问名称空间列表。
+meta:
+  - name: keywords
+    content: Kubernetes 教程,Kubernetes 授权,Kubernetes RBAC,Kubernetes权限,Service Account Permissions
+
+---
+
+# 授权用户访问名称空间列表
+
+<AdSenseTitle/>
+
+## 背景
+
+在 Kuboard 中为某一个用户 [授权访问指定名称空间](../kuboard.html) 后，默认情况下，该用户在切换名称空间时，需要自行输入目标名称空间的名称，如下图所示：
+
+![Kubernetes-Kuboard-切换名称空间](./list-namespace.assets/image-20200524094918957.png)
+
+这种情况，需要用户记住并输入名称空间的名字，使用时不是特别便捷。事实上，只要为用户授予查询名称空间列表的权限，Kuboard 中切换名称空间的这个对话框就可以展示名称空间列表，供用户选择，如下图所示：
+
+
+
+本文描述了如何为用户授权查询名称空间列表。
+
+
+
+## 前提
+
+* 您已经 [安装了 Kuboard](/install/install-dashboard-upgrade.html) <Badge>Kuboard v2.0.0-beta.2</Badge>
+* 使用 [管理员用户 ](/install/install-dashboard.html#获取token)登录 Kuboard
+* 已经为某一个用户 [授权访问指定名称空间](../kuboard.html)
+
+
+
+## 授权步骤
+
+* 使用 kuboard-user 登录Kuboard，并进入集群概览页，如下图所示：
+
+  > 必须使用具备 cluster-admin 权限的用户才能完成此授权操作。
+
+  [了解如何使用 kuboard-user 登录 Kuboard](/install/install-dashboard.html#获取token)
+
+  ![Kubernetes集群概览页](./list-namespace.assets/image-20200524093144670.png)
+
+* 在集群概览页中，点击右上角的 **设置** 按钮，并在左侧菜单中导航到 **权限管理** --> **ClusterRole**，如下图所示：
+
+  ![Kubernetes-ClusterRole列表](./list-namespace.assets/image-20200524093756988.png)
+
+* 在 **ClusterRole** 列表中找到 **system:basic-user** 并进入其详情页，如下图所示：
+
+  ![Kubernetes-ClusterRole-Details](./list-namespace.assets/image-20200524093948089.png)
+
+* 为 **system:basic-user** 添加 list namespace 的权限，如下图所示：
+
+  > **v1** apiGroup 在下拉列表的第一个；
+
+  点击 **确定** 按钮，然后点击 **保存** 按钮，完成授权过程。
+
+  ::: tip system:basic-user
+
+  **system:basic-user** 是 Kubernetes 中的一个默认 ClusterRole，该 ClusterRole 被绑定到所有的已认证用户 **system:authenticated**，完成此授权后，任何已经登录 Kubernetes 的用户都可以查询到名称空间列表（只读操作）。
+
+  :::
+
+  ![Kubernetes-ClusterRole-添加访问规则](./list-namespace.assets/image-20200524094216757.png)
+
+
+
+## 通过列表选择的形式切换名称空间
+
+完成上述授权之后，只具备部分名称空间访问权限的用户在切换名称空间时，就可以通过在列表中选择的方式进行切换了。如下图所示：
+
+退出 **kuboard-user**，使用只具备部分名称空间访问权限的用户登录 Kuboard，并点击左上角 **[切换]** 按钮：
+
+![Kubernetes-Kuboard-切换名称空间](./list-namespace.assets/image-20200524095525170.png)
+
+
+
+::tada: :tada: :tada: 您已可以通过列表选择的形式切换名称空间了。
+