You can assign Role-Based Access Control (RBAC) privileges to Bare Metal Orchestrator users. The Global Admin role assigns read and write privileges to all Bare Metal Orchestrator resources. The Global Reader role allows read-only access. A YAML file containing user profile information is used to create a user and generate the kubeconfig file for user authentication and cluster access.