Uploaded image for project: 'Product Technical Learning'
  1. Product Technical Learning
  2. PTL-14161

DO380: ch01s11 - missing details - RHT2235280

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Minor Minor
    • None
    • DO380 - OCP4.14-en-2-20240617
    • DO380
    • False
    • Hide

      None

      Show
      None
    • False
    • 1
    • en-US (English)

      Please fill in the following information:


      URL: ch01s11
      Reporter RHNID: erich
      Section title: Lab: Authentication and Identity Management
      Language: English

      Issue description

      Objective 4 of the auth-review lab; isn't possible without more 'instruction' or details.

      For example, you should explain to the learner that they need to interact with the OIDC IdP (or service), to obtain the proper oidc-client-secret, for the configuration that the objective is asking them to configure.

      With out this instruction you don't have enough information (without the solution) to complete the lab. For example if you ssh to sso.ocp4.example.com (as the student user) to get the oidc-client-secret, you can't properly authenticate with the OIDC IdP due to the following certificate issue:

      [student@sso ~]$ /opt/rh-sso-7.6/bin/kcadm.sh config credentials --server https://sso.ocp4.example.com:8080/auth --realm master --user admin --password redhatocp
      Logging into https://sso.ocp4.example.com:8080/auth as user admin of realm master
      Failed to send request - PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

      Its only with information from the solution or prior labs do you even know that you need to ssh to this system as the rhsso user.

      Steps to reproduce:

      Workaround:

      Expected result:

              gls-curriculum-ocp-core@redhat.com PTL - OCP Platform Team
              carias@redhat.com Carlos Arias
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: