CentOS Stream 10: Use Podman as a Regular User
Run Podman containers as a non-root user using user namespaces and sub UID/GID mappings.
May 25, 2026 • 4 min read
centoscentos-stream-10podmanrootlessuserscontainers
Run Podman containers as a regular (non-root) user.
Sub UID/GID Mappings
Subordinate UID and GID ranges are automatically configured for users to run rootless containers:
cat /etc/subuid
cat /etc/subgid
When new users are added, subordinate ID ranges are assigned automatically:
useradd redhat
useradd fedora
Run Containers as a Regular User
Switch to a regular user and run Podman:
podman pull centos:stream10
podman images
podman run centos:stream10 echo "run rootless containers"
Container data is stored under ~/.local/share/containers/storage/:
ls ~/.local/share/containers/storage
Create Pods as a Regular User
podman pod create -p 8081:80 -n test-pod
podman pod ls
Port Mapping Limitations
Non-root users cannot bind to privileged ports (below 1024). Use ports 1024 and above:
podman run -d -p 1024:80 docker.io/library/nginx