Creating an admin user for quick access on Red Hat OpenShift Service on AWS
If you want to be able to access your cluster immediately through a cluster-admin user, you can follow these steps. This is good if you need quick access to the cluster, though the recommended approach is to use a formal identity provider to access the cluster (and then grant that user admin privileges, if desired).
What will you learn?
- How to access your cluster through a cluster-admin user
Create an admin user
- Run this command to create the admin user:
rosa create admin --cluster=<cluster-name>
You will see a response like the following:
W: It is recommended to add an identity provider to login to this cluster. See 'rosa create idp --help' for more information. I: Admin account has been added to cluster 'my-rosa-cluster'. It may take up to a minute for the account to become active. I: To login, run the following command: oc login https://api.my-rosa-cluster.abcd.p1.openshiftapps.com:6443 \ --username cluster-admin \ --password FWGYL-2mkJI-00000-00000
- Copy the login command returned to you in the previous step and paste that into your terminal. This should log you into the cluster via the CLI so you can start using the cluster.
$ oc login https://api.my-rosa-cluster.abcd.p1.openshiftapps.com:6443 \ > --username cluster-admin \ > --password FWGYL-2mkJI-00000-00000 Login successful. You have access to 79 projects, the list has been suppressed. You can list all projects with ' projects' Using project "default".
- To check that you are logged in as the admin user you can run:
- You can also confirm by running the following command. Only a cluster-admin user can run this without errors:
oc get all -n openshift-apiserver
- You can now use the cluster as an admin user, though it is highly recommended to set up an identity provider (IdP).
You are now ready to set up an IdP.