User management

The JupyterHub AMI user management is powered by KeyCloak. This allows for centralized user management that can be connected to other authentication backends such as LDAP.

To access the KeyCloak management UI first go the /auth path prefix:

URL

http://<ip-address>/auth

Then click on Administration Console and login into the admin UI:

• username: admin
• default password is the EC2 instance ID, for example: i-0b3445939c749244c

On the top right corner select the Jupyterhub realm.

Jupyterhub realm

For a user to be able to login into JupyterHub it must belong to the jupyterhub realm.

The default jupyterhub-admin user is located there.

Adding a user

To add a new user:

1. User click on the Users button on the left navigation under the Manage section.
2. Click on the Add user button on the right side of the table.
3. On the form type the username of the new user
4. Click on Save

You will be redirected to the new user page. To add a password click on the Credentials page and set a temp password.

Now when the new user logs in with the temp password it will be prompted to select a new one.

And after that, the new user will be automatically sent to it's Jupyter session.

Other user actions

On the KeyCloak admin UI you can disable and delete users, connect to external authentication systems such as AD/LDAP and more.

To take advantage of other functionality of KeyCloak please take a look at their official documentation.

JupyterHub Admin

Admin users are able to control users from the JupyterHub Admin Panel.

The default the jupyterhub-admin is also an admin.