Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-101618

[RFE] Direct support of OIDC authentication using SSSD

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • Icon: Story Story
    • Resolution: Duplicate
    • Icon: Normal Normal
    • rhel-10.2
    • None
    • sssd
    • None
    • None
    • rhel-idm-sssd
    • None
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      What is the nature and description of the request?   

      Customer is requesting OIDC authentication support directly to Keycloak/Red Hat SSO from Linux using SSSD. This would be SSSD to support authentication between the "Red Hat Enterprise Linux" and the "Red Hat SSO" products.

      Why does the customer need this? 

      This solution would provide the ability to authenticate between Unix hosts via SSO using an access token instead of SSH keys, eliminating the need for a password.  Without the use of idM operations.

      How would you like to achieve this?

      Modify PAM and nsswitch (update initgroups, group, and passwd databases) and use SSSD to authenticate and cache.

              sbose@redhat.com Sumit Bose
              rhn-support-abuckner Andre Buckner
              Votes:
              0 Vote for this issue
              Watchers:
              9 Start watching this issue

                Created:
                Updated:
                Resolved: