Why AD tree is shown as user name when trying to list user in OpenShift Container Platform?

Solution Verified - Updated -

Issue

  • An OCN-Active-Directory as identityProvider is configured in /etc/origin/master/master-config.yaml file on master server. However the oc get user show the name of a technical user as a ldap tree.
[root@ master]# oc get user
NAME                                                    UID                         FULL NAME    IDENTITIES
CN=exampleuser,OU=Users,OU=ORG,DC=example,DC=com   xxxxxxxx-xxxx-xxxx-xxxx-xxxxxx   exampleuser   OCN-Active-Directory:CN=exampleuser,OU=Users,OU=ORG,DC=example,DC=com

Normal user entry looks as below:

exampleuser2 xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx  example, user2  OCN-Active-Directory:CN=exampleuser2,OU=NewUsers,OU=ORG,DC=example,DC=com

Following are entries from master-config.yaml file.

- challenge: true
    login: true
    mappingMethod: claim
    name: OCN-Active-Directory
    provider:
      apiVersion: v1
      attributes:
        email:
        - mail
        id:
        - dn
        name:
        - displayName
        preferredUsername:
        - uid
      bindDN: "CN=exampleuser,OU=Users,OU=ORG,DC=example,DC=com"
      bindPassword: password
      ca: ""
      insecure: true
      kind: LDAPPasswordIdentityProvider
      url: ldap://ldapserver.example.com/OU=Users,OU=ORG,DC=example,DC=com?sAMAccountName?sub?(objectClass=organizationalPerson)

Environment

  • OpenShift Container Platform 3.7
  • OCN Active Directory

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content