1.8. 为用户授予管理员权限

将用户添加到配置的身份提供程序后，您可以在 AWS 集群上为 Red Hat OpenShift Service 授予用户 cluster-admin 或 dedicated-admin 权限。

流程

为身份提供程序用户配置 cluster-admin 权限：

授予用户 cluster-admin 权限：

rosa grant user cluster-admin --user=<idp_user_name> --cluster=<cluster_name>

$ rosa grant user cluster-admin --user=<idp_user_name> --cluster=<cluster_name>

Copy to Clipboard

Toggle word wrap

输出示例

I: Granted role 'cluster-admins' to user '<idp_user_name>' on cluster '<cluster_name>'

I: Granted role 'cluster-admins' to user '<idp_user_name>' on cluster '<cluster_name>'

Copy to Clipboard

Toggle word wrap

验证该用户是否被列为 cluster-admins 组的成员：

rosa list users --cluster=<cluster_name>

$ rosa list users --cluster=<cluster_name>

Copy to Clipboard

Toggle word wrap

输出示例

ID                 GROUPS
<idp_user_name>    cluster-admins

ID                 GROUPS
<idp_user_name>    cluster-admins

Copy to Clipboard

Toggle word wrap

为身份提供程序用户配置 dedicated-admin 权限：

授予用户 dedicated-admin 权限：

rosa grant user dedicated-admin --user=<idp_user_name> --cluster=<cluster_name>

$ rosa grant user dedicated-admin --user=<idp_user_name> --cluster=<cluster_name>

Copy to Clipboard

Toggle word wrap

输出示例

I: Granted role 'dedicated-admins' to user '<idp_user_name>' on cluster '<cluster_name>'

I: Granted role 'dedicated-admins' to user '<idp_user_name>' on cluster '<cluster_name>'

Copy to Clipboard

Toggle word wrap

验证该用户是否被列为 dedicated-admins 组的成员：

rosa list users --cluster=<cluster_name>

$ rosa list users --cluster=<cluster_name>

Copy to Clipboard

Toggle word wrap

输出示例

ID                 GROUPS
<idp_user_name>    dedicated-admins

ID                 GROUPS
<idp_user_name>    dedicated-admins

Copy to Clipboard

Toggle word wrap

返回顶部