On Tue, 2020-04-21 at 12:48 +0000, Anton Louw wrote: > > > Hi Everybody, > > Hi Anton,
> Has anybody gone the route of using KeyCloak to login to oVirt? > KeyCloak has been configured and the neccesary configs have also been > done on the engine. It redirects perfectly from the oVirt Web Login > page to KeyCloak, but after logging into KeyCloak, I get redirected > back to the oVirt Web Login. When trying to login again, I get the > below error: > > > > server_error: Missing parameter: 'params' > Not so long ago I managed to setup ovirt engine with keyloack (using ldap as users provider). Hopefully, I would be able to help you with it. There is excellent blog post[1] available. You might also check keycloak+ldap post [2], however, when I was working on the integration I was not aware of if and did not test it. The error you mentioned does not really indicate what exactly is wrong but it might suggest that there is some sort of misconfiguration with apache (you need to install and configure mod_auth_openidc as described at [1]). At least that happened in my case. In case you have already gone through it you could probably check apache logs. Under [1] there is a python script that can be used to check api calls, please update username/password and test it against your environment. Would it be possible post relevant piece of apache logs together with engine.log ? [1] https://blogs.ovirt.org/2019/01/federate-ovirt-engine-authentication-to-openid-connect-infrastructure/ [2] https://blogs.ovirt.org/2018/08/ovirt-saml-with-keyloak-using-389ds-user-federation/ Artur > I have checked all the logs, but nothing is telling me what exactly > the issue is. > > If anybody has any idea, please let me know. > > Thanks > > Anton Louw > Cloud Engineer: Storage and Virtualization at Vox > T: 087 805 0000 | D: 087 805 1572 > M: N/A > E: anton.l...@voxtelecom.co.za > A: Rutherford Estate, 1 Scott Street, Waverley, Johannesburg > www.vox.co.za > > > > > > > > > > > > > > Disclaimer > The contents of this email are confidential to the sender and the > intended recipient. Unless the contents are clearly and entirely of a > personal nature, they are subject to copyright in favour of the > holding company of the Vox group of companies. Any recipient who > receives this email in error should immediately report the error to > the sender and permanently delete this email from all storage > devices. > > This email has been scanned for viruses and malware, and may have > been automatically archived by Mimecast Ltd, an innovator in Software > as a Service (SaaS) for business. Providing a safer and more useful > place for your human generated data. Specializing in; Security, > archiving and compliance. To find out more Click Here. > > > _______________________________________________ > Users mailing list -- users@ovirt.org > To unsubscribe send an email to users-le...@ovirt.org > Privacy Statement: https://www.ovirt.org/privacy-policy.html > oVirt Code of Conduct: > https://www.ovirt.org/community/about/community-guidelines/ > List Archives: > https://lists.ovirt.org/archives/list/users@ovirt.org/message/S4I2I3MID4A4AYXVOLWKU55563DFKEFQ/
signature.asc
Description: This is a digitally signed message part
_______________________________________________ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/FSNYXFSZAXS3LPGZ5ONXZ7422STLBOOF/
