Replacing Kubeadmin
Guys, as part of the installer process a kubeadmin identity is created on the cluster with clusteradmin role. The password is stored in the installer output files. Best practice is to configure an IDP, assign some identities to the clusteradmin role then delete kubeadmin.
That said, we often have periods where we are quickly deploying clusters for test and destroying them thereafter. In such scenarios I don't need any IDP as I am just testing pipelines etc.
So, what I'd like to do is create some local identity that has clusteradmin and would act as kubeadmin does and then delete kubeadmin. What are my options?
- htpass user?
- service account?
Any ideas would be most welcome.
