Channels
academy
amazon
arm
azure
cabpr
chinese
ci-cd
danish
deutsch
developer
elemental
epinio
espanol
events
extensions
fleet
français
gcp
general
harvester
harvester-dev
hobbyfarm
hypper
japanese
k3d
k3os
k3s
k3s-contributor
kim
kubernetes
kubewarden
lima
logging
longhorn-dev
longhorn-storage
masterclass
mesos
mexico
nederlands
neuvector-security
office-hours
one-point-x
onlinemeetup
onlinetraining
opni
os
ozt
phillydotnet
portugues
rancher-desktop
rancher-extensions
rancher-setup
rancher-wrangler
random
rfed_ara
rio
rke
rke2
russian
s3gw
service-mesh
storage
submariner
supermicro-sixsq
swarm
terraform-controller
terraform-provider-rancher2
terraform-provider-rke
theranchcast
training-0110
training-0124
training-0131
training-0207
training-0214
training-1220
ukranian
v16-v21-migration
vsphere
windows
Title
f
freezing-hairdresser-79403
05/02/2023, 10:37 AMCan Rancher be configured with an external identity provider using environment variables?
extraEnva
agreeable-oil-87482
05/02/2023, 12:40 PMAs in, use environment variables to configure an external auth provider? No.
f
freezing-hairdresser-79403
05/02/2023, 12:41 PMYes
Like Azure Ad
a
agreeable-oil-87482
05/02/2023, 12:42 PMNot with env variables alone, no.
f
freezing-hairdresser-79403
05/02/2023, 12:46 PMWhat do you means by the
env variables alonea
agreeable-oil-87482
05/02/2023, 12:48 PMThere's only specific options that are influenced by env variables, the only one i've really seen is `CATTLE_TLS_MIN_VERSION`/
CATTLE_TLS_CIPHERSYou should be setting configs like the auth provider using Terraform
You could try and create the underlying auth provider config type directly and post this to the apiserver of the k8s cluster running Rancher, but it's not currently supported
f
freezing-hairdresser-79403
05/02/2023, 1:06 PMThank you for providing the details. I believe it may be possible to configure extr auth provider using API.
@agreeable-oil-87482 Hi !
I attempted to set up Azure AD authentication with Rancher by making a
curlRANCHER_URL/v3/azureADConfigs/azureadHowever, when I configured Azure AD authentication in Rancher using the Rancher UI, I was prompted to authenticate with Azure AD and only upon successful authentication , the activation was successful.
a
agreeable-oil-87482
05/02/2023, 5:23 PMNot working as expected in what way?
f
freezing-hairdresser-79403
05/02/2023, 5:24 PMNot working as expected, that means I can't authenticate any AD user
a
agreeable-oil-87482
05/02/2023, 5:25 PMDid you configure so any user can login?
Or only explicit users?
f
freezing-hairdresser-79403
05/02/2023, 5:26 PMI think you ask for this attribute
"accessMode": "unrestricted"a
agreeable-oil-87482
05/02/2023, 5:27 PMPlease show what it states in the UI for the Auth config and scope
f
freezing-hairdresser-79403
05/02/2023, 5:42 PMI solved my issue, Thank you a lot
I missed to add the follwoing filed in the payload of my PUT Request
• Graph Endpoint
• Auth Endpoint
• Token Endpoint