kubernetes doesnt have USER objects. You need to use certificates to to get authenticated and authorized with api server.

Generate certificate and sign it using cluster ca. build kubeconfig file. assign appropriate roles and rolebindings and using the kubeconfig you should be able to perform backup and restore using velero

Alternatively, download velero and using velero install command you can deploy velero into the k8s cluster

It was already stated but I feel this needs more guidance.

1. You need to create Certificates and sign them. Here you can find a useful tutorial regarding managing TLS certificates in a Cluster.

Kubernetes provides a certificates.k8s.io API, which lets you provision TLS certificates signed by a Certificate Authority (CA) that you control. These CA and certificates can be used by your workloads to establish trust.

2. Use RBAC Authorization.

RBAC uses the rbac.authorization.k8s.io API Group to drive authorization decisions, allowing admins to dynamically configure policies through the Kubernetes API.

See API Overview for details regarding Roles and ClusterRoles as well as RoleBindings and ClusterRoleBindings.

In the RBAC API, a role contains rules that represent a set of permissions. Permissions are purely additive (there are no “deny” rules). A role can be defined within a namespace with a Role, or cluster-wide with a ClusterRole.

A role binding grants the permissions defined in a role to a user or set of users. It holds a list of subjects (users, groups, or service accounts), and a reference to the role being granted. Permissions can be granted within a namespace with a RoleBinding, or cluster-wide with a ClusterRoleBinding.

3. And in case you need some guideline regarding backup and restore using Velero (Heptio’s Ark) you may want to see this blog in addition to regular GitHub and official documentation.

I hope it helps.