rbac-use-pxctl-security-enabled
Summary and Key concepts
Summary:
This article guides administrators on how to set up pxctl
contexts for Portworx clusters with PX-Security enabled. It provides steps for retrieving an admin token and setting up the pxctl
context on individual nodes of a Kubernetes or OpenShift cluster. The process involves retrieving the admin token, finding the relevant Portworx pod, and executing commands within the Portworx container using kubectl
or oc
. Additionally, administrators are reminded that the pxctl
context must be refreshed whenever the token expires (24 hours by default) and are provided with a link to documentation on customizing token lifetimes.
Kubernetes Concepts:
Portworx Concepts:
Once a storage cluster with PX-Security enabled is running, a cluster admin must set up a pxctl
context on each node in order to interact with the system.
The following steps will guide an Operator-based storage admin to setup pxctl
contexts on each node.