How can we have kerberos based (IPA or Active Directory) user authorization in our OpenShift Enterprise applications?

Solution Unverified - Updated -

Issue

We want to provide OpenShift Enterprise (OSE) based applications with the ability to authorize users against Active Directory (AD) using the OSE service principal to authenticate to AD in order to issue the query.

The applications would need read access to the keytab file.

Environment

  • OpenShift Enterprise 2.x
  • Kerberos based user authentication (standalone Kerberos, IPA, or Active Directory)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.