ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

How to run TDM portal Docker container(tdmweb) using a different user than ROOT


Article ID: 221586


Updated On:


CA Test Data Manager (Data Finder / Grid Tools)


We used the docker images ( version ) in a Kubernetes cluster. But all images use the user root.

We want to use a different user to run the pod tdmweb. We modify the dockerfile ( add the new user to the image, give the ownership of the repository /opt to the new user, add the variables that it needs (CATALINA_HOME, CATDMWEB_HOME, JAVA_HOME) but the pod failed to start. How can we run the pod with a different user than root?


Release : 4.9.1

Component : DOCKER



After a lot of investigation and trial and failed efforts, the customer found the way to run the pod with another user than root 

The process that they took :

In the dockerfile they create the user(with id_user) and the group (with group_user), and they had to add java arguments for the heap size 

In the file deployment.yaml (where we defined the pod), they add the following, in the spec of the pod tdmweb

    runAsUser: id_user
    runAsNonRoot: true
    runAsGroup: group_user
    fsGroup: group_user