Skip to main content
Version: v3.8.0

potctl create auth-group

potctl create auth-group

Create a custom embedded auth group

Synopsis

Manage embedded auth groups (admin/sre only for create, rename, and delete).

System groups (admin, sre, developer, viewer) cannot be created or deleted; their names cannot be changed. MfaRequired can be toggled on any group. Auth groups are unavailable when the Controller uses external OIDC.

potctl create auth-group NAME [flags]

Examples

potctl create auth-group secops --mfa-required -n NAMESPACE

Options

-h, --help help for auth-group
--mfa-required Require TOTP for members of this group at login

Options inherited from parent commands

--debug Toggle for displaying verbose output of API clients (HTTP and SSH)
-n, --namespace string Namespace to execute respective command within (default "default")
-v, --verbose Toggle for displaying verbose output of potctl

SEE ALSO