diff --git a/src/features/read-all/README.md b/src/features/read-all/README.md
index 13f387e49d..18ebfbe955 100644
--- a/src/features/read-all/README.md
+++ b/src/features/read-all/README.md
@@ -4,3 +4,19 @@ The read all cluster role found in cluster-role.yaml can be bound to service acc
 
 This is ideal for giving particular users access to a read only user to use in Lens or for dashboards left up in the office.
 
+To use the cluster role bind it to a service account. In the example below we give read all access to the service account called `developer`.
+
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: developer-read-all
+subjects:
+- kind: ServiceAccount
+  name: developer
+  namespace: default
+roleRef:
+  kind: ClusterRole
+  name: read-all-clusterrole
+  apiGroup: rbac.authorization.k8s.io
+```