Managing Users and Groups
- Managing users and groups
Adding local users
- ENTERPRISE
Adding external users
- ENTERPRISE
Resetting the Superuser
- ENTERPRISE
Overriding the default Linux user
- ENTERPRISE

Managing Users and Groups

ENTERPRISE

Managing users and groups

DC/OS Enterprise can manage two types of users:

Local: Local user accounts exist only in DC/OS.
External: DC/OS stores only the user’s ID or user name, along with other DC/OS-specific information, such as permissions and group membership. DC/OS never receives or stores the passwords of external users. Instead, it delegates the verification of the user’s credentials to one of the following: LDAP directory, SAML, or OpenID Connect.

DC/OS Enterprise also allows you to create groups of users and import groups of users from LDAP. Groups can make it easier to manage permissions. Instead of assigning permissions to each user account individually, you can assign the permissions to an entire group of users at once.

Importing groups from LDAP makes it easier to add external users.

Adding local users

ENTERPRISE

Adding a local user with the web interface or CLI

Adding external users

ENTERPRISE

Adding an external user to DC/OS

Resetting the Superuser

ENTERPRISE

Reset an existing user or create a new user with the DC/OS reset superuser script

Overriding the default Linux user

ENTERPRISE

Overriding the default Linux user