1. Proposed title of this feature request

Ability to restore the "kubeadmin" user

2. What is the nature and description of the request?

Customer would like to have the ability to restore the "kubeadmin" user once it has been deleted. The "kubeadmin" / "kube:admin" user is initially created during the installation and can be used to initially administer the OpenShift Container Platform cluster. Our documentation shows how to remove the user once another IDP has been configured: https://docs.openshift.com/container-platform/4.10/authentication/remove-kubeadmin.html

However, after deleting the user, the customer would like to restore the user to get emergency access to the cluster.

3. Why does the customer need this? (List the business requirements here)

Customer is changing his IDP configuration and would like to restore the "kubeadmin" user to have a backup user should his configuration fail. This user would be used as an emergency user.

4. List any affected packages or components.

• OAuth
• openshift/library-go