User management with Application Service Adapter

Application Service Adapter allows you to manage users. This topic tells you how.

Application Service Adapter users are user identifiers that Kubernetes recognizes in the subject section of its role-based access control (RBAC) resources, such as RoleBindings. For more information about user subject names in Kubernetes, see the Referring to subjects section of Using RBAC Authorization and the Authenticating topic in the Kubernetes project documentation.

You can assign users Cloud Foundry roles by using the role management commands of the cf CLI or by directly creating RoleBinding resources through the Kubernetes API. For more information, see the Cloud Foundry documentation.

AWS IAM user management for EKS

To configure an AWS IAM user for an Elastic Kubernetes Service (EKS) cluster, you must configure the aws-auth ConfigMap on the EKS cluster to map IAM resources by ARN to the cluster. For more information, see the AWS IAM user and role access documentation.

Note

The AWS documentation recommends using eksctl to edit the ConfigMap.

check-circle-line exclamation-circle-line close-line
Scroll to top icon