Red Hat Advanced Cluster Security for Kubernetes (RHACS) creates an administrator account, admin
, during the installation process that can be used to log in with a user name and password.
The password is dynamically generated unless specifically overridden and is unique to your RHACS instance.
In production environments, it is highly recommended to create an authentication provider and remove the admin
user.
After an authentication provider has been successfully created, it is strongly recommended to remove the admin
user.
Removing the admin
user is dependent on the installation method of the RHACS portal.
Perform one of the following procedures:
For Operator installations, set central.adminPasswordGenerationDisabled
to true
in your Central
custom resource.
For helm installations:
In your Central
helm configuration, set central.adminPassword.generate
to false
.
Follow the steps to change the configuration. See "Changing configuration options after deployment" for more information.
For roxctl
installations:
When generating the manifest, set Disable password generation
to false
.
Follow the steps to install Central by using roxctl
to apply the changes. See "Install Central using the roxctl CLI" for more information.
After applying the configuration changes, you cannot log in as an admin
user.
You can add the |