diff --git a/README.md b/README.md
index 3e9d4a91e4d28331197d1b5d09dbdb5370178853..0a1d6390f8c888d85925caafc0c42daf95918cc6 100644
--- a/README.md
+++ b/README.md
@@ -6,9 +6,11 @@
 
 ### CRDs im Cluster anlegen
 
-    kubectl apply -f doc/crds/*yaml
+    kubectl apply -f doc/crds/
 
-### Service Account anlegen
+### Service Account RBACs anlegen
 
-    kubectl apply -f doc/ServiceAccount/*yaml
+    kubectl apply -f doc/ServiceAccount/
+
+Hinweis: Der Service Account wird automatisch angelegt
 
diff --git a/doc/ServiceAccount/serviceaccount-secrets-read.yaml b/doc/ServiceAccount/serviceaccount-keycloak-secrets-read.yaml
similarity index 81%
rename from doc/ServiceAccount/serviceaccount-secrets-read.yaml
rename to doc/ServiceAccount/serviceaccount-keycloak-secrets-read.yaml
index 0a4e23d5aef27d1c841654b714e76f6cb73abe05..09b5b01cd2dda0939737656673ac34adedb2ae53 100644
--- a/doc/ServiceAccount/serviceaccount-secrets-read.yaml
+++ b/doc/ServiceAccount/serviceaccount-keycloak-secrets-read.yaml
@@ -23,23 +23,25 @@
 #
 
 ---
-kind: ClusterRoleBinding
+kind: RoleBinding
 apiVersion: rbac.authorization.k8s.io/v1
 metadata:
-  name: ozg-operator-secrets-viewer-role-binding
+  name: ozg-operator-keycloak-secrets-viewer-role-binding
+  namespace: keycloak
 subjects:
   - kind: ServiceAccount
     name: ozg-operator-serviceaccount
-    namespace: by-torsten-ozg-operator-dev
+    namespace: by-ozg-operator-dev        
 roleRef:
-  kind: ClusterRole
-  name: ozg-operator-secrets-viewer-role
+  kind: Role
+  name: ozg-operator-keycloak-secrets-viewer-role
   apiGroup: rbac.authorization.k8s.io
 ---
-kind: ClusterRole
+kind: Role
 apiVersion: rbac.authorization.k8s.io/v1
 metadata:
-  name: ozg-operator-secrets-viewer-role
+  name: ozg-operator-keycloak-secrets-viewer-role
+  namespace: keycloak
 rules:
   - apiGroups:
       - "*"
diff --git a/doc/ServiceAccount/serviceaccount-keycloakclient-read.yaml b/doc/ServiceAccount/serviceaccount-keycloakclient-read.yaml
index fdaada38c14628fdb7394b6ebfc512ba7af3ebd5..c1f640e64fcbcf7040552723be7c8c86c0075dcb 100644
--- a/doc/ServiceAccount/serviceaccount-keycloakclient-read.yaml
+++ b/doc/ServiceAccount/serviceaccount-keycloakclient-read.yaml
@@ -30,7 +30,7 @@ metadata:
 subjects:
   - kind: ServiceAccount
     name: ozg-operator-serviceaccount
-    namespace: by-torsten-ozg-operator-dev
+    namespace: by-ozg-operator-dev
 roleRef:
   kind: ClusterRole
   name: ozg-operator-keycloakclient-viewer-role
diff --git a/doc/ServiceAccount/serviceaccount-keycloakclient-write.yaml b/doc/ServiceAccount/serviceaccount-keycloakclient-write.yaml
index f8bf6b17dc77922ecbe0ae10284e72ed0ac5c34e..1da9ae4d7ca871708ae2d5314e830b32c7d218e9 100644
--- a/doc/ServiceAccount/serviceaccount-keycloakclient-write.yaml
+++ b/doc/ServiceAccount/serviceaccount-keycloakclient-write.yaml
@@ -30,7 +30,7 @@ metadata:
 subjects:
   - kind: ServiceAccount
     name: ozg-operator-serviceaccount
-    namespace: by-torsten-ozg-operator-dev
+    namespace: by-ozg-operator-dev
 roleRef:
   kind: ClusterRole
   name: ozg-operator-keycloakclient-writer-role
diff --git a/doc/ServiceAccount/serviceaccount-keycloakgroup-read.yaml b/doc/ServiceAccount/serviceaccount-keycloakgroup-read.yaml
index b783031f0f6c8df069184c97946b75ec880efcaa..935cb0720760cc1aa8b602b6d2ded3c708907121 100644
--- a/doc/ServiceAccount/serviceaccount-keycloakgroup-read.yaml
+++ b/doc/ServiceAccount/serviceaccount-keycloakgroup-read.yaml
@@ -30,7 +30,7 @@ metadata:
 subjects:
   - kind: ServiceAccount
     name: ozg-operator-serviceaccount
-    namespace: by-torsten-ozg-operator-dev
+    namespace: by-ozg-operator-dev
 roleRef:
   kind: ClusterRole
   name: ozg-operator-keycloakgroup-viewer-role
diff --git a/doc/ServiceAccount/serviceaccount-keycloakgroup-write.yaml b/doc/ServiceAccount/serviceaccount-keycloakgroup-write.yaml
index 4ec04886b445184a964c066fe106d6749441caf0..e1711a9b230ab1b044a5078788bb6c5b82a3372c 100644
--- a/doc/ServiceAccount/serviceaccount-keycloakgroup-write.yaml
+++ b/doc/ServiceAccount/serviceaccount-keycloakgroup-write.yaml
@@ -30,7 +30,7 @@ metadata:
 subjects:
   - kind: ServiceAccount
     name: ozg-operator-serviceaccount
-    namespace: by-torsten-ozg-operator-dev
+    namespace: by-ozg-operator-dev
 roleRef:
   kind: ClusterRole
   name: ozg-operator-keycloakgroup-writer-role
diff --git a/doc/ServiceAccount/serviceaccount-keycloakrealm-read.yaml b/doc/ServiceAccount/serviceaccount-keycloakrealm-read.yaml
index a2fd06e413f67386dedc597959b13a82bbded18f..a7c8421ddeff226c5588890a69fbe06d8bd3ea46 100644
--- a/doc/ServiceAccount/serviceaccount-keycloakrealm-read.yaml
+++ b/doc/ServiceAccount/serviceaccount-keycloakrealm-read.yaml
@@ -30,7 +30,7 @@ metadata:
 subjects:
   - kind: ServiceAccount
     name: ozg-operator-serviceaccount
-    namespace: by-torsten-ozg-operator-dev
+    namespace: by-ozg-operator-dev
 roleRef:
   kind: ClusterRole
   name: ozg-operator-keycloakrealm-viewer-role
diff --git a/doc/ServiceAccount/serviceaccount-keycloakrealm-write.yaml b/doc/ServiceAccount/serviceaccount-keycloakrealm-write.yaml
index e38b5c9696c0214b6d157c9f6f7bed6b65a7f226..6214aa0561fd563017bd536a59c960170fe496d5 100644
--- a/doc/ServiceAccount/serviceaccount-keycloakrealm-write.yaml
+++ b/doc/ServiceAccount/serviceaccount-keycloakrealm-write.yaml
@@ -30,7 +30,7 @@ metadata:
 subjects:
   - kind: ServiceAccount
     name: ozg-operator-serviceaccount
-    namespace: by-torsten-ozg-operator-dev
+    namespace: by-ozg-operator-dev
 roleRef:
   kind: ClusterRole
   name: ozg-operator-keycloakrealm-writer-role
diff --git a/doc/ServiceAccount/serviceaccount-keycloakuser-read.yaml b/doc/ServiceAccount/serviceaccount-keycloakuser-read.yaml
index 5a7e4196ef44dfed4cdb06044d6321c9f18399a0..27641a5b92f323387ef8a6dc890a4616b2eea522 100644
--- a/doc/ServiceAccount/serviceaccount-keycloakuser-read.yaml
+++ b/doc/ServiceAccount/serviceaccount-keycloakuser-read.yaml
@@ -30,7 +30,7 @@ metadata:
 subjects:
   - kind: ServiceAccount
     name: ozg-operator-serviceaccount
-    namespace: by-torsten-ozg-operator-dev
+    namespace: by-ozg-operator-dev
 roleRef:
   kind: ClusterRole
   name: ozg-operator-keycloakuser-viewer-role
diff --git a/doc/ServiceAccount/serviceaccount-keycloakuser-write.yaml b/doc/ServiceAccount/serviceaccount-keycloakuser-write.yaml
index 297dc040e4d3a61ae1a97aba14a95e4155e16e4a..530497efc0534c21861e70b983bdcf48acbed2cd 100644
--- a/doc/ServiceAccount/serviceaccount-keycloakuser-write.yaml
+++ b/doc/ServiceAccount/serviceaccount-keycloakuser-write.yaml
@@ -30,7 +30,7 @@ metadata:
 subjects:
   - kind: ServiceAccount
     name: ozg-operator-serviceaccount
-    namespace: by-torsten-ozg-operator-dev
+    namespace: by-ozg-operator-dev
 roleRef:
   kind: ClusterRole
   name: ozg-operator-keycloakuser-writer-role