How to use HTPasswd IdP on ROSA or OSD cluster

Solution Verified - Updated -

Environment

  • Red Hat OpenShift Service on AWS (ROSA)
    • 4
  • Red Hat OpenShift Dedicated (OSD)
    • 4
  • HTPasswd

Issue

  • Is it possible to use HTPasswd as an IdP like OCP 4 on OSD or ROSA cluster instead of external IdPs?
  • How to delete the HTPasswd IdP in OSD/ROSA?

Resolution

Unfortunately, the HTPasswd IdP in OSD and ROSA is only supported to create a single, static user with cluster administration privileges. Refer to Configuring an HTPasswd identity provider in OSD or Configuring an HTPasswd identity provider in ROSA for additional information.

It is possible to create/delete the HTPasswd admin user in ROSA using the rosa CLI this way:

$ rosa create admin --cluster=[cluster_name]
$ rosa delete admin --cluster=[cluster_name]

There is an internal task to add this functionality in ROSA: SDE-1516.

Root Cause

The HTPasswd IdP in OSD and ROSA is only supported to create a single, static user with cluster administration privileges.

This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.

Comments