How to configure IDP to make use of ExecCredential in RHOCP 4.x

Solution Verified - Updated -

Issue

Disclaimer: Links contained herein to external website(s) are provided for convenience only. Red Hat has not reviewed the links and is not responsible for the content or its availability. The inclusion of any link to an external website does not imply endorsement by Red Hat of the website or their entities, products or services. You agree that Red Hat is not responsible or liable for any loss or expenses that may result due to your use of (or reliance on) the external site or content.

  • RHOCP product documentation does not mention anything about how to configure IDP with Azure service principles, kubelogin and ExecCredentials resource. How should this be configured properly? Which IDP provider should be used?
  • While trying to implement an Identity Provider (IDP) for service principals from Azure AD according to https://github.com/Azure/kubelogin, kubelogin sends a token back, but looks like IDP needs to be configured to actually handle the token validation.

Environment

  • Red Hat Openshift Container Platform (RHOCP)
    • 4.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content