How Do I Import CA Certificate Required By LDAPS Integration In Ansible Tower Running On OpenShift ?
Issue
I have configured LDAPS authentication on Ansible Tower but the integration requires CA certificate to be added to the Anisble Tower running on OpenShift. Without adding the certificate the authentication to LDAPS is failing with certificate verify failed error like below.
oc -n tower logs -f ansible-tower-0 -c ansible-tower-web
2020-03-29 08:17:25,589 WARNING django_auth_ldap Caught LDAPError while authenticating ishwar: SERVER_DOWN({'desc': "Can't contact LDAP server", 'info': 'error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed (self signed certificate)'},)
2020-03-29 08:17:25,742 WARNING awx.api.generics Login failed for user ishwar from 10.148.0.3
2020-03-29 08:17:25,762 WARNING django.request Unauthorized: /api/login/
2020-03-29 08:17:25,762 WARNING django.request Unauthorized: /api/login/
10.148.0.3 - - [29/Mar/2020:08:17:25 +0000] "POST /api/login/ HTTP/1.1" 401 5937 "http://35.197.153.236/" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:73.0) Gecko/20100101 Firefox/73.0" "-"
[pid: 209|app: 0|req: 36/219] 10.148.0.3 () {52 vars in 1044 bytes} [Sun Mar 29 08:17:25 2020] POST /api/login/ => generated 5937 bytes in 641 msecs (HTTP/1.1 401) 8 headers in 392 bytes (1 switches on core 0)
Environment
Ansible Tower
OpenShift
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.