-
Bug
-
Resolution: Unresolved
-
Minor
-
None
-
DO380 - OCP4.14-en-2-20240617
-
None
-
False
-
-
False
-
1
-
-
-
en-US (English)
Please fill in the following information:
| URL: | ch01s11 |
| Reporter RHNID: | erich |
| Section title: | Lab: Authentication and Identity Management |
| Language: | English |
Issue description
Objective 4 of the auth-review lab; isn't possible without more 'instruction' or details.
For example, you should explain to the learner that they need to interact with the OIDC IdP (or service), to obtain the proper oidc-client-secret, for the configuration that the objective is asking them to configure.
With out this instruction you don't have enough information (without the solution) to complete the lab. For example if you ssh to sso.ocp4.example.com (as the student user) to get the oidc-client-secret, you can't properly authenticate with the OIDC IdP due to the following certificate issue:
[student@sso ~]$ /opt/rh-sso-7.6/bin/kcadm.sh config credentials --server https://sso.ocp4.example.com:8080/auth --realm master --user admin --password redhatocp
Logging into https://sso.ocp4.example.com:8080/auth as user admin of realm master
Failed to send request - PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
Its only with information from the solution or prior labs do you even know that you need to ssh to this system as the rhsso user.
Steps to reproduce:
Workaround:
Expected result: