docs/doc/source/security/kubernetes/kubernetes-cli-from-local-ldap-linux-account-login.rst

For Kubernetes CLI from a Local LDAP Linux Account Login

You can establish credentials for executing Kubernetes (kubectl and helm) for a Local user, if required; this is not setup by default.

For more information about ldapusersetup, see Creating LDAP Linux Accounts <create-ldap-linux-accounts>.

You must configure the oidc-auth-apps Identity Provider (dex) to get Kubernetes authentication tokens. See Set up OIDC Auth Applications <configure-oidc-auth-applications> for more information.

1. Assign Kubernetes permissions to the user. See Configure Users, Groups, and Authorization <configure-users-groups-and-authorization> for more information.
2. Configure kubectl access. See Configure Kubernetes Client Access <configure-kubernetes-client-access> to setup the Kubernetes configuration file and get an authentication token.