rbac-use-pxctl-security-enabled
Summary and Key concepts
Summary:
This article guides administrators on how to set up pxctl contexts for Portworx clusters with PX-Security enabled. It provides steps for retrieving an admin token and setting up the pxctl context on individual nodes of a Kubernetes or OpenShift cluster. The process involves retrieving the admin token, finding the relevant Portworx pod, and executing commands within the Portworx container using kubectl or oc. Additionally, administrators are reminded that the pxctl context must be refreshed whenever the token expires (24 hours by default) and are provided with a link to documentation on customizing token lifetimes.
Kubernetes Concepts:
Portworx Concepts:
Once a storage cluster with PX-Security enabled is running, a cluster admin must set up a pxctl context on each node in order to interact with the system.
The following steps will guide an Operator-based storage admin to setup pxctl contexts on each node.