Replacing identity provider CA in OpenShift
Issue
- We are going to swap out the CA cert used by OpenShift's UI authentication.
- Do we need to perform any steps in OpenShift as part of that change?
- The new cert will have the same name as the old cert.
identityProviders:
- challenge: true
login: true
mappingMethod: claim
name: example
provider:
apiVersion: v1
attributes:
email:
- mail
id:
- dn
name:
- cn
preferredUsername:
- uid
bindDN: uid=ldap,ou=User,dc=example,dc=local
bindPassword: <hash>
ca: /etc/openldap/cacerts/my-ca-cert.pem
insecure: false
kind: LDAPPasswordIdentityProvider
url: ldap://auth.example.com/dc=example,dc=local?uid
Environment
- Red Hat OpenShift Container Platform
- 3.6
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.