Chapter 6. Adding users for OpenShift Data Science
By default, all OpenShift users have access to Red Hat OpenShift Data Science. If you are using these default permission settings, no further action is required. However, if you plan to restrict access to your OpenShift Data Science instance by defining specialized user groups, you must grant users permission to access Red Hat OpenShift Data Science by adding user accounts to the Red Hat OpenShift Data Science user group, administrator group, or both. You can either use the default group name, or specify a group name that already exists in your identity provider.
The user group provides the user with access to developer functions in the Red Hat OpenShift Data Science dashboard, and associated services, such as Jupyter.
The administrator group provides the user with access to developer and administrator functions in the Red Hat OpenShift Data Science dashboard and associated services, such as Jupyter.
If you have restricted access using specialized user groups, users that are not in the OpenShift Data Science user group or administrator group can still view the dashboard, but are unable to use associated services, such as Jupyter. They are also unable to access the Cluster settings page.
To use the default group names, see Adding users to specialized OpenShift Data Science user groups. This method is easy to set up, but you must manually configure user lists in the OpenShift Container Platform web console.
6.1. Adding users to specialized OpenShift Data Science user groups
All OpenShift users have access to Red Hat OpenShift Data Science by default. Additionally, users with the cluster-admin role automatically have administrator access to OpenShift Data Science. To further restrict access to OpenShift Data Science, you can continue to create specialized OpenShift Data Science administrator and user groups.
Follow the steps in this section to add users to your specialized OpenShift Data Science administrator and user groups. This method is easy to set up, but you must manage the user lists manually in the OpenShift Container Platform web console.
Prerequisites
- You have configured a supported identity provider for OpenShift Container Platform.
-
You are assigned the
cluster-adminrole in OpenShift Container Platform. - You have defined an OpenShift Data Science administrator group and user group.
Procedure
- In the OpenShift Container Platform web console, click User Management → Groups.
Click the name of the group you want to add users to.
-
For administrative users, click the administrator group, for example,
rhods-admins. For normal users, click the user group, for example,
rhods-users.The Group details page for that group appears.
-
For administrative users, click the administrator group, for example,
Click Actions → Add Users.
The Add Users dialog appears.
- In the the Users field, enter the relevant user name to add to the group.
- Click Save.
Verification
- Click the Details tab for each group and confirm that the Users section contains the user names that you added.
