User Management
Proxmox supports multiple users, roles, groups, and authentication realms. This is essential for any shared or production environment, as well as keeping access limited and secure.
Authentication Realms available in Proxmox
- Linux PAM- uses the host OS users (/etc/passwd). Root uses this realm
- Proxmox VE Authentication Server (PVE)- built-in Proxmox user database. Best for creating non-root admin accounts and GUI access
- LDAP/Active Directory- for enterprise integration
Creating and Setting up New User
Create User
- Go to Datacenter > Permissions > Users
- Click Add
- Fill in:
• User name: e.g., homelab-admin
• Realm: Proxmox VE Authentication Server
• Password: set a strong password
• Email, First/Last Name: optional - Click Add
Assigning Premissions
- Go to Datacenter > Permissions
- Click Add > User Permission
- Set:
• Path: / (root, grants access to everything)
• User: the user you just created
• Role: Administrator (for full access) or PVEVMAdmin (for VM management only) - Click Add
Built In Roles
- Administrator — full control
- PVEVMAdmin — manage VMs (no host configuration)
- PVEVMUser — view and use VMs, no configuration
- PVEDatastoreAdmin — manage storage
- PVEAuditor — read-only access
Note: It is best practice to avoid using the root account for daily tasks. Create a named admin account for normal use.