Feature Overview
This feature will enable the adoption and integration of LDAP (Lightweight Directory Access Protocol) as an authentication and identity management backend for the Red Hat OpenStack Services on OpenShift (RHOSO) platform. It will allow customers to manage users and credentials in their existing LDAP infrastructure and have those identities seamlessly recognized by OpenStack services.

Goals

• Provide a robust, enterprise-grade authentication solution that integrates with common customer identity systems.
• Simplify user management for cloud administrators by centralizing identity in an existing LDAP directory.
• Enhance security by allowing the enforcement of password policies and access controls defined in LDAP.
• Enable a migration path for existing RHOSP customers who currently rely on LDAP integration.

Acceptance Criteria

• OpenStack Keystone is successfully configured to use an external LDAP server for authentication.
• Users and groups from the LDAP directory are visible and usable within OpenStack.
• Role-based access control (RBAC) can be applied to LDAP-sourced users and groups.
• The integration is fully supported and documented for production use.