public/rancher-docs
1
0
Fork 0
mirror of https://github.com/rancher/rancher-docs.git synced 2026-04-26 08:15:37 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add troubleshooting note for group visibility issue in Assign Global Role

Browse Source
This commit is contained in:
Pratik Jagrut
2024-12-11 23:15:09 +05:30
parent 2f46e9354f
commit 685b53b227
3 changed files with 49 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
docs/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/authentication-config/configure-keycloak-oidc.md
View File

@@ -156,3 +156,20 @@ When you fill the **Configure a Keycloak OIDC account** form and click on **Enab
### Keycloak Error: "Invalid grant_type"
* In some cases, this error message may be misleading and is actually caused by setting the `Valid Redirect URI` incorrectly.
### Unable to See Groups When Assigning Global Roles
If you use a user that is not part of any groups for initial setup, then you cannot search for groups when trying to assign a global role.
To resolve this, you can either:
1. Manually edit the `authconfig/keycloakoidc` object to enable group search.
1. On the Rancher server:
```bash
kubectl edit authconfigs.management.cattle.io keycloakoidc
```
2. Set `groupSearchEnabled: true`.
3. Save your changes.
2. Reconfigure your Keycloak OIDC setup using a user that is assigned to at least one group in Keycloak.

16
versioned_docs/version-2.10/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/authentication-config/configure-keycloak-oidc.md
View File

@@ -147,3 +147,19 @@ When you fill the **Configure a Keycloak OIDC account** form and click on **Enab
### Keycloak Error: "Invalid grant_type"
* In some cases, this error message may be misleading and is actually caused by setting the `Valid Redirect URI` incorrectly.
### Unable to See Groups When Assigning Global Roles
If you use a user that is not part of any groups for initial setup, then you cannot search for groups when trying to assign a global role.
To resolve this, you can either:
1. Manually edit the `authconfig/keycloakoidc` object to enable group search.
1. On the Rancher server:
```bash
kubectl edit authconfigs.management.cattle.io keycloakoidc
```
2. Set `groupSearchEnabled: true`.
3. Save your changes.
2. Reconfigure your Keycloak OIDC setup using a user that is assigned to at least one group in Keycloak.

16
versioned_docs/version-2.9/how-to-guides/new-user-guides/authentication-permissions-and-global-configuration/authentication-config/configure-keycloak-oidc.md
View File

@@ -156,3 +156,19 @@ When you fill the **Configure a Keycloak OIDC account** form and click on **Enab
### Keycloak Error: "Invalid grant_type"
* In some cases, this error message may be misleading and is actually caused by setting the `Valid Redirect URI` incorrectly.
### Unable to See Groups When Assigning Global Roles
If you use a user that is not part of any groups for initial setup, then you cannot search for groups when trying to assign a global role.
To resolve this, you can either:
1. Manually edit the `authconfig/keycloakoidc` object to enable group search.
1. On the Rancher server:
```bash
kubectl edit authconfigs.management.cattle.io keycloakoidc
```
2. Set `groupSearchEnabled: true`.
3. Save your changes.
2. Reconfigure your Keycloak OIDC setup using a user that is assigned to at least one group in Keycloak.