# Management Console The T4K Management Console is a web UI for managing backup and restore operations across clusters. Its configuration is controlled by the **TrilioVaultManager (TVM) Custom Resource**, which governs ingress setup, hostname, TLS, and resource limits. Once access is configured, authentication determines who can log in and what they can do. ## Access Configuration Before users can log in, the Management Console must be exposed via ingress or port-forward: * [Configuring the UI](/kubernetes/configuration/management-console/accessing-the-ui.md) — Set up ingress, hostname, DNS, and HTTPS access for upstream Kubernetes and OpenShift environments. ## Authentication T4K supports the following authentication methods: * [Kubeconfig Authentication](https://github.com/trilioData/docs-public-k8s/blob/docs/restructure-hub-spoke-5.3.x/restructured-5.3.x/configuration/management-console/kubeconfig-authentication.md) * [OIDC/LDAP & OpenShift Authentication](https://github.com/trilioData/docs-public-k8s/blob/docs/restructure-hub-spoke-5.3.x/restructured-5.3.x/configuration/management-console/oidc-ldap-and-openshift-authentication.md) * [RBAC](https://github.com/trilioData/docs-public-k8s/blob/docs/restructure-hub-spoke-5.3.x/restructured-5.3.x/configuration/management-console/rbac.md) If T4K has been installed at a **namespace** level, then a minimum of *read access* over the namespace is required to access the management console. Some Kubernetes clusters may contain cloud-specific `exec` action or use `auth-provider` configuration to fetch the authentication token within the kubeconfig file. Since the binaries for the specific cloud service may not be available on the setup where the user is providing the config file, T4K may not be able to fetch the token and populate it in the kubeconfig. To support authentication for these cloud providers, perform the steps in the following sub-pages to create a kubeconfig file with a custom kubeconfig, consisting of a service account token and cluster data. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.trilio.io/kubernetes/configuration/management-console.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.