Authorizing a user to act as an IBM Cloud Pak for Data instance administrator
If a user other than the cluster administrator will install IBM Cloud Pak for Data, you must give a Red Hat® OpenShift® Container Platform user the required roles to install the Cloud Pak for Data software in the instance projects.
- Installation phase
- Setting up a client workstation
- Who needs to complete this task?
-
Cluster administrator A cluster administrator must complete this task.
- When do you need to complete this task?
-
This task is required in some situations.
- Skip this task if the cluster administrator will install the Cloud Pak for Data software in the instance projects.
- Complete this task only if a user other than the cluster administrator will install IBM Cloud Pak for Data.
Repeat as needed If you plan to install multiple instances of Cloud Pak for Data, you must repeat this task for each instance that you plan to install.
Before you begin
Best practice: You can run many of the
commands in this task exactly as written if you set up environment variables for your installation.
For instructions, see Setting up installation environment variables.
Ensure that you source the environment variables before you run the commands in this task.
About this task
You must assign the following roles in the specified projects to any users who will install software for this instance of Cloud Pak for Data:
Role | Projects | Details |
---|---|---|
admin |
|
The Red Hat OpenShift Container Platform
admin role enables a user to view and modify any resource in the project except for
the project quota. |
cpd-instance-admin-apply-olm |
|
The cpd-instance-admin-apply-olm role enables a user to create and modify
OLM artifacts in the operators
project for the instance. |
Tip: If you are not willing to give a user the
admin
permission on the
projects associated with the instance, you can give the user the minimum role-based access control
to create the required resources based on the components that you plan to install. However, this
method requires additional planning and maintenance and is not recommended for typical
installations. Giving a
user the minimum RBAC to install Cloud Pak for Data
componentsProcedure
To apply the required permissions to the projects: