Authorizing an instance administrator to manage OADP backups
If you want to enable a user other than the cluster administrator to debug issues with backups or to collect data about OADP backups, you must give an instance administrator permissions on the projects where the backup and restore software is installed on your cluster.
- Installation phase
-
Setting up a client workstation- Setting up a cluster
- Collecting required information
- Preparing to run installs in a restricted network
- Preparing to run installs from a private container registry
- Preparing the cluster for IBM Software
Hub
Preparing to install an instance of IBM Software
Hub- Installing an instance of IBM Software
Hub
- Setting up the control plane
- Installing solutions and services
- Who needs to complete this task?
-
Cluster administrator A cluster administrator must complete this task.
- When do you need to complete this task?
-
This task is required in some situations.
- Skip this task if the cluster administrator will manage IBM Software Hub backups.
- Complete this task only if a user other than the cluster administrator will manage IBM Software
Hub.
Repeat as needed If you have multiple instances of IBM Software Hub, repeat this task for each instance.
Before you begin
Ensure that the
INSTANCE_ADMIN environment variable is
set:echo $INSTANCE_ADMINIf the environment variable is not set, set it to the username of the Red Hat®
OpenShift® Container Platform user that you want to give
administration privileges
to.
export INSTANCE_ADMIN=<user>About this task
Give the instance administrator the following roles on the specified projects:
| Role | Projects | Details |
|---|---|---|
admin |
|
The Red Hat
OpenShift Container Platform
admin role enables a user to view and modify any resource in the project except for
the project quota. |
Procedure
Give the instance administrator the
admin role on the required projects: oc create rolebinding ${OADP_PROJECT}-${INSTANCE_ADMIN}-admin \
--clusterrole=admin \
--user=${INSTANCE_ADMIN} \
-n ${OADP_PROJECT}