Why does the RH-SSO admin console fail to load local users when a User Federation Provider (LDAP) is broken?

Solution In Progress - Updated -

Issue

Why does the RH-SSO admin console fail to load local users when a User Federation Provider (LDAP) is broken?

Given a Red Hat Single Sign-On configured to use several user federations and containing local users. If a user federation is broken (LDAP server is down), then local users cannot be accessed by the administrator. When clicking in "view all users" in the admin console, nothing is loaded, not even the users created locally in Red Hat Single Sign-On.

Is there a possibility to allow at least to manage local users while a user federation is down? Otherwise, from the administration perspective, the user federation is broken and furthermore, there is no chance to manage local users to come out with a workaround.

Reproducer notes:

  1. LDAP server is down
  2. Click in Users
  3. Click in View all users
  4. Tried to create a local user with username "test.local." The user could not be created and I get an error because of the unavailability of the OpenLDAP server.

Environment

  • Red Hat Single Sign-On (RH-SSO)
    • 7.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.