Skip to content

IBM/ibm-iam-operator

Repository files navigation

ibm-iam-operator

Go Report Card

The ibm-iam-operator installs the IBM Cloud Platform Common Services Identity Management (IM) service.

Important: Do not install this operator directly. Install this operator only by using the IBM Common Service Operator. For more information about installing the IBM Common Service Operator operator, see Installer documentation (https://www.ibm.com/support/knowledgecenter/SSHKN6/kc_welcome_cs.html).

If you are using the operator as part of an IBM Cloud Pak, see the documentation for that IBM Cloud Pak to learn more about how to install and use the operator service. For more information about IBM Cloud Paks, see IBM Cloud Paks that use Common Services.

You can use the ibm-iam-operator to install the authentication and authorization services for the IBM Cloud Platform Common Services.

With these services, you can configure security for IBM Cloud Platform Common Services, IBM Certified Containers (IBM products), or IBM Cloud Paks that are installed.

For more information about the available IBM Cloud Platform Common Services, see the IBM Knowledge Center.

Supported platforms

  • Red Hat OpenShift Container Platform 4.2 or newer installed on one of the following platforms:

    • Linux x86_64
    • Linux on Power (ppc64le)
    • Linux on IBM Z and LinuxONE

Operator versions

  • 4.10.0

Prerequisites

Before you install this operator, you need to first install the operator dependencies and prerequisites:

Documentation

To install the operator by using the IBM Common Services Operator, follow the installation and configuration instructions that are in the IBM Knowledge Center.

SecurityContextConstraints Requirements

The IBM IM operator service supports running with the OpenShift Container Platform default restricted Security Context Constraints (SCCs).

For more information about the OpenShift Container Platform Security Context Constraints, see Managing Security Context Constraints.

PodSecurityPolicy Requirements

The IM operator does not define any specific pod security requirements.

Custom PodSecurityPolicy definition:

The IM operator does not define any specific custom pod security requirements.

Custom SecurityContextConstraints definition:

The IM operator runs under a restricted security context constraint with a non root uid.

Developer Guide

For more information on how to develop and build this project, please see DEVELOPMENT.md.