ArgoCD Create Local Users

If you are using LDAP, you should consider using the LDAP Integration Page and utilize LDAP Groups and Users instead.

Table of Contents

• ArgoCD Create Local Users
  • Table of Contents
  • Create a user in the config-map
  • Define a new password
  • Set permissions for users

Create a user in the config-map

To create a new user, update the file argocd-cm.yaml. Open the file and make changes according to this example:

apiVersion: v1
data:
  accounts.devops: apiKey,login
  accounts.tibco: apiKey,login
  accounts.<NEW_USER>: apiKey, login
  application.instanceLabelKey: argocd.argoproj.io/instance

Define a new password

Execute the following command using the argocd CLI tool:

argocd account update-password --account <NEW_USER> --new-password "<NEW_PASSWORD>"

Set permissions for users

To set permissions for users, update the file argocd-rbac.yaml. Open the file and make changes according to this example:

apiVersion: v1
data:
  policy.csv: |
    p, role:devops-role, applications, *, */*, allow
    p, role:devops-role, clusters, get, *, allow
    p, role:devops-role, repositories, get, *, allow
    p, role:devops-role, repositories, create, *, allow
    p, role:devops-role, repositories, update, *, allow
    p, role:devops-role, repositories, delete, *, allow
    g, devops, role:devops-role
  policy.default: role:readonly

Note: If you want to create a read-only user, only add the line:

g, <USER>, role:<NEW_ROLE>

You can learn more about permissions in the ArgoCD Official Documentation.