[ https://issues.apache.org/jira/browse/AMBARI-23213?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Sandor Molnar updated AMBARI-23213: ----------------------------------- Description: To enable or disable SSO using the Ambari CLI, the user needs to answer each prompt. This is not convenient for automated tools. So the following command line options should be available for use. If any mandatory option is not specified via the command line, the user should be prompted for a value. Global SSO options: * {{--sso-enabled}} if {{sso-enabled}} is "true": * {{--sso-provider-url}} * {{--sso-public-cert-file}} * {{--sso-jwt-cookie-name}} ** optional, if not supplied, the documented default value will be used * {{--sso-jwt-audience-list}} ** optional, if not supplied, the documented default value will be used {noformat:title=Examples} ambari-server setup-sso --help ambari-server setup-sso --sso-enabled=true --sso-provider-url=https://knox.ambari.apache.org:8443 --sso-public-cert-file=/tmp/sso.pem ambari-server setup-sso --sso-enabled=true --sso-provider-url=https://knox.ambari.apache.org:8443 --sso-public-cert-file=/tmp/sso.pem --sso-jwt-cookie-name=ambari-jtw ambari-server setup-sso --sso-enabled=true --sso-provider-url=https://knox.ambari.apache.org:8443 --sso-public-cert-file=/tmp/sso.pem --sso-jwt-cookie-name=ambari-jtw --sso-jwt-audience-list=ambari ambari-server setup-sso --sso-enabled=true --sso-provider-url=https://knox.ambari.apache.org:8443 --sso-public-cert-file=/tmp/sso.pem ambari-server setup-sso --sso-enabled=false {noformat} was: To enable or disable SSO using the Ambari CLI, the user needs to answer each prompt. This is not convenient for automated tools. So the following command line options should be available for use. If any mandatory option is not specified via the command line, the user should be prompted for a value. Global SSO options: * {{--sso-enabled}} if {{sso-enabled}} is "true": * {{--sso-provider-url}} * {{--sso-public-cert-file}} * {{--sso-jwt-cookie-name}} ** optional, if not supplied, the documented default value will be used * {{--sso-jwt-audience}} ** optional, if not supplied, the documented default value will be used {noformat:title=Examples} ambari-server setup-sso --help ambari-server setup-sso --sso-enabled=true --sso-provider-url=https://knox.ambari.apache.org:8443 --sso-public-cert-file=/tmp/sso.pem ambari-server setup-sso --sso-enabled=true --sso-provider-url=https://knox.ambari.apache.org:8443 --sso-public-cert-file=/tmp/sso.pem --sso-jwt-cookie-name=ambari-jtw ambari-server setup-sso --sso-enabled=true --sso-provider-url=https://knox.ambari.apache.org:8443 --sso-public-cert-file=/tmp/sso.pem --sso-jwt-cookie-name=ambari-jtw --sso-jwt-audience-list=ambari ambari-server setup-sso --sso-enabled=true --sso-provider-url=https://knox.ambari.apache.org:8443 --sso-public-cert-file=/tmp/sso.pem ambari-server setup-sso --sso-enabled=false {noformat} > Enable or disable SSO using Ambari CLI with options > --------------------------------------------------- > > Key: AMBARI-23213 > URL: https://issues.apache.org/jira/browse/AMBARI-23213 > Project: Ambari > Issue Type: Task > Components: ambari-server > Affects Versions: 2.7.0 > Reporter: Sandor Molnar > Assignee: Sandor Molnar > Priority: Critical > Labels: SSO, security > Fix For: 2.7.0 > > > To enable or disable SSO using the Ambari CLI, the user needs to answer each > prompt. This is not convenient for automated tools. So the following command > line options should be available for use. If any mandatory option is not > specified via the command line, the user should be prompted for a value. > Global SSO options: > * {{--sso-enabled}} > if {{sso-enabled}} is "true": > * {{--sso-provider-url}} > * {{--sso-public-cert-file}} > * {{--sso-jwt-cookie-name}} > ** optional, if not supplied, the documented default value will be used > * {{--sso-jwt-audience-list}} > ** optional, if not supplied, the documented default value will be used > {noformat:title=Examples} > ambari-server setup-sso --help > ambari-server setup-sso --sso-enabled=true > --sso-provider-url=https://knox.ambari.apache.org:8443 > --sso-public-cert-file=/tmp/sso.pem > ambari-server setup-sso --sso-enabled=true > --sso-provider-url=https://knox.ambari.apache.org:8443 > --sso-public-cert-file=/tmp/sso.pem --sso-jwt-cookie-name=ambari-jtw > ambari-server setup-sso --sso-enabled=true > --sso-provider-url=https://knox.ambari.apache.org:8443 > --sso-public-cert-file=/tmp/sso.pem --sso-jwt-cookie-name=ambari-jtw > --sso-jwt-audience-list=ambari > ambari-server setup-sso --sso-enabled=true > --sso-provider-url=https://knox.ambari.apache.org:8443 > --sso-public-cert-file=/tmp/sso.pem > ambari-server setup-sso --sso-enabled=false > {noformat} -- This message was sent by Atlassian JIRA (v7.6.3#76005)