Application Service Adapter allows you to manage users. This topic tells you how.
Application Service Adapter users are user identifiers that Kubernetes recognizes in the subject section of its role-based access control (RBAC) resources, such as RoleBindings. For more information about user subject names in Kubernetes, see the Referring to subjects section of Using RBAC Authorization and the Authenticating topic in the Kubernetes project documentation.
You can assign users Cloud Foundry roles by using the role management commands of the cf CLI or by directly creating RoleBinding resources through the Kubernetes API. For more information, see the Cloud Foundry documentation.
To configure an AWS IAM user for an Elastic Kubernetes Service (EKS) cluster,
you must configure the aws-auth ConfigMap on the EKS cluster to map IAM
resources by ARN to the cluster. For more information, see the AWS IAM user and role access
documentation.
Note The AWS documentation recommends using
eksctlto edit the ConfigMap.