Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-4990

[RFE] SSSD support for Azure AD / Microsoft Entra ID (or general direct support of OIDC authentication)

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • sssd-2.12.0-1.el10
    • Low
    • FutureFeature
    • 1
    • rhel-idm-sssd
    • ssg_idm
    • None
    • False
    • False
    • Hide

      None

      Show
      None
    • Yes
    • RHELs: 10.2, 9.8
    • Feature
    • Hide
      Feature, enhancement:
      SSSD in RHEL-10.2 provides a new generic identity and authentication provider for Identity Providers (IdPs). Initial support includes Keycloak and Entra ID. You can now configure SSSD to read users and groups directly from these IdPs and enable user authentication using the OAUTH 2.0 Device Authorization Grant (RFC 8628). See the sssd-idp(5) man page and https://sssd.io/docs/idp/idp-introduction.html for more information and configuration examples.

      Reason:
      The usage of Identity Providers (IdPs) for user and group management is increasing.

      Result:
      SSSD users can use Identity Providers (IdPs) for user and group management and authentication.
      Show
      Feature, enhancement: SSSD in RHEL-10.2 provides a new generic identity and authentication provider for Identity Providers (IdPs). Initial support includes Keycloak and Entra ID. You can now configure SSSD to read users and groups directly from these IdPs and enable user authentication using the OAUTH 2.0 Device Authorization Grant (RFC 8628). See the sssd-idp(5) man page and https://sssd.io/docs/idp/idp-introduction.html for more information and configuration examples. Reason: The usage of Identity Providers (IdPs) for user and group management is increasing. Result: SSSD users can use Identity Providers (IdPs) for user and group management and authentication.
    • Proposed
    • None
    • 57,005

      Description of problem:

      • This RFE is a request to support integration with Azure AD.

      Expected results:

      • Integrate RHEL systems with Azure AD.
      • Ability to use ad_integration RHEL system role with Azure AD.

      Additional info:

      • The ad_integration RHEL system role is a wrapper for realmd and sssd provided functionality. Therefore, requires SSSD support for Azure AD to be available first.

              sbose@redhat.com Sumit Bose
              rhn-support-swachira@redhat.com Sam Wachira
              Sumit Bose Sumit Bose
              Scott Poore Scott Poore
              Louise McGarry Louise McGarry
              Votes:
              2 Vote for this issue
              Watchers:
              19 Start watching this issue

                Created:
                Updated: