The JupyterHub AMI user management is powered by KeyCloak. This allows for centralized user management that can be connected to other authentication backends such as LDAP.
To access the KeyCloak management UI first go the
/auth path prefix:
Then click on
Administration Console and login into the admin UI:
- default password is the EC2 instance ID, for example:
On the top right corner select the
For a user to be able to login into JupyterHub it must belong to the
jupyterhub-admin user is located there.
Adding a user¶
To add a new user:
- User click on the
Usersbutton on the left navigation under the
- Click on the
Add userbutton on the right side of the table.
- On the form type the username of the new user
- Click on
You will be redirected to the new user page.
To add a password click on the
Credentials page and set a temp password.
Now when the new user logs in with the temp password it will be prompted to select a new one.
And after that, the new user will be automatically sent to it's Jupyter session.
Other user actions¶
On the KeyCloak admin UI you can disable and delete users, connect to external authentication systems such as AD/LDAP and more.
To take advantage of other functionality of KeyCloak please take a look at their official documentation.
Admin users are able to control users from the JupyterHub Admin Panel.
The default the
jupyterhub-admin is also an admin.