https://rancher.com/ logo
r

rough-apartment-35069

03/06/2023, 5:46 PM
Hello all! I'm trying to integrate Azure AD and have user from Azure Groups, defined as "azuread_group://<name>" RBAC access to Rancher, running on EKS. Authentication to Azure passes successfully but user can't get defined via ClusterRoleBinding permissions. Could you please advice what else can be missed here? Appreciate any advice!
Looks like I found the problem. Maybe it could be useful for someone. Nowhere it is mentioned that for <name> should be provided UserGroup Object Id, rather than just literally "name" of the group So correct format for roleRef: name is
"azuread_group://<object id value>"
5 Views