In CKS, unmanaged authentication refers to the use of user identities and credentials that are not managed within the CoreWeave cloud platform.Documentation Index
Fetch the complete documentation index at: https://docs.coreweave.com/llms.txt
Use this file to discover all available pages before exploring further.
API endpoint
CKS provides a Kubernetes API endpoint for implementing unmanaged authentication. This endpoint allows you to authenticate with the Kubernetes API without relying on CoreWeave’s Managed Auth service. This endpoint is intended if you prefer to manage your own authentication mechanisms for CKS clusters such as OIDC, Service Account tokens, and authentication webhooks. This provides flexibility if you have specific authentication requirements that cannot be met through CoreWeave-managed authentication. Using the unmanaged auth API endpoint is best for the following scenarios:- OIDC authentication: Integrate standard OIDC IdPs for authentication to your CKS clusters
- Service Account authentication: Use Kubernetes Service Account tokens to authenticate with your CKS clusters
- Custom authentication providers: Integrate with enterprise identity systems not supported by standard OIDC
- Multi-factor authentication: Implement custom MFA workflows
Unmanaged auth can be configured on existing clusters without requiring cluster recreation.