Satellite 6.2 and ActiveDirectory
Good morning all.
I am about to embark on tying our Satellite 6.2 server to ActiveDirectory. The documentation is pretty sparse when it comes to doing what I want to do.
The goal configuration goes something like this:
Members of AD Group "Satellite Administrator" should grant full admin access to the Satellite - all orgs, all roles - like "root" in unix.
Members of AD Group "Satellite Group 1" should grant access to Org A with satellite Role "custom_limited_role".
Members of AD Group "Satellite Group 2" should grant access to Org B with satellite Role "custom_limited_role".
Members of AD Group "Satellite Group 3" should grant access to Org C and Org D with satellite Role "custom_limited_role".
AD users without any membership in designated groups should fail at the login screen (fail at identity & authentication), not be able to pass the login screen and get to a screen where they have no access (pass identity and authentication, fail at authorization)
Is this /possible/ with Satellite, and is there any useful documentation?
-j
Responses
Red Hat Satellite 6.2 docs for AD integration
That's about all the documentation I could find on it. Granted it's a very old request, but thought I'd at least post a link to the docs.
I got this working with ALOT of work.. Setting up the bind user from ldap is the piece of cake.. the hardest part was to assign the OU group the correct flags. So here are two links with some of my discussions.
https://access.redhat.com/discussions/3375891#comment-1282431 https://access.redhat.com/solutions/3358091#comment-1282201
The biggest thing for me was I had the right OU name but it had to be all lower case. If you need further help. Reply and I'll try to help. This was a huge criteria for me also to get working and I assure you it does work. I'm not the strongest AD guy out there either.
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
