- From: Noah Kantrowitz <
>
- To:
- Subject: [chef] Re: Controlling the Chef 12 Pivotal user
- Date: Thu, 5 Mar 2015 10:31:19 -0800
On Mar 3, 2015, at 3:35 PM, Michael Weinberg
<
>
wrote:
>
Taking this off twitter
>
(https://twitter.com/luckymike/status/572856407692746754) and to the list.
>
>
It's unclear to me how one can manage the pivotal admin user. There's no
>
user editing via chef-server-ctl or knife, and the user creation seems to
>
occur deep within the chef-server-core installer. What is the approach for
>
controlling that user creation and/or updating the user?
So the problem is that this user is kind of magic. It is used in a lot of
places as a non-member superuser for internal administration tasks like
adding new users or creating new orgs. You can edit some of the data, like
give it a new display name (though nothing uses that so not terribly
interesting) but changing its permissions would likely brick your Chef
Server. You should never need to actually touch the pivotal user, and it
should be as invisible as possible (the Web UI automatically hides) because
it is effectively an implementation detail of Chef Server.
--Noah
Attachment:
signature.asc
Description: Message signed with OpenPGP using GPGMail
Archive powered by MHonArc 2.6.16.