Managing users in Hybrid Manager Innovation Release
- Hybrid Manager dual release strategy
- Documentation for the current Long-term support release
Hybrid Manager (HM) supports authentication for the HM console using either native users or external identity providers (IdPs) such as LDAP, SAML, or OIDC.
During the initial bootstrapping of HM, an administrator sets up a native superuser for HM console access. Use this native superuser to sign in to the console for the first time.
For testing or demo environments, you can simplify operations by adding more native users as needed.
- See Creating native users for more information.
For assigning system roles to different users, HM uses a role-based access control (RBAC) model.
- See User roles and authorization for more information.
For production deployments, we strongly recommend configuring an external IdP like LDAP, SAML, OIDC or another supported connector. This ensures robust and secure user management. This needs to be done at install time. After configuring your chosen IdP and adding new administrators for the organization, disable the native user login.
- See Configuring an IdP for more information.
Managing native users
Create and manage additional native users for testing purposes or remove native users after configuring an IdP.
User roles and authorization
Discover what user roles are predefined for Hybrid Manager, what they allow access to, and how to assign them to users.