-
Task
-
Resolution: Done
-
Critical
-
None
-
RHODS_1.1_GA
-
False
-
False
-
No
-
-
-
No
-
Undefined
-
No
-
Pending
-
None
-
- Add Identity Provider (sso.redhat.com) to the cluster in OCM. Use OpenID type with the “lookup” method (so users can’t get automatically created during login)!
- Submit a ticket to update redirect URLs and web origins in the sso clients for the new cluster.
Example: [https://redhat.service-now.com/help?id=rh_ticket&is_new_order=true&table=sc_request&sys_id=5dd676221bca2810ab60fc87dc4bcbe1
]Another example: https://redhat.service-now.com/help?id=rh_ticket&is_new_order=true&table=sc_request&sys_id=ae86a2121b876010477e43fccd4bcb0a - Create dedicated/cluster admin users.
- Add dedicated/cluster admin users in OCM for the cluster (copy the usernames from the other clusters)
- Create users in the cluster.
- Let OpenShift create the users during the first login.
- Set DevSandbox IDP to use the “claim” method (so the dedicated/admin users can be created during the first login).
- Login to cluster using the dedicated/cluster admin users (so, they are created in the cluster during login). Or create user/identity resources manually.
- Set IDP to "lookup" in OCM (so, new users are not created automatically during login).
- Optionally, when there is at least one dedicated user is created in the cluster you can create the rest of the users manually by creating the corresponding user and identity resources. You will need UserIDs for that.
