Except for the admins, who are responsible for administration and troubleshooting, there is no reason for any other user to run kubeadm, why the command should not be allowed.