Bug 2086465
Summary: | External identity providers should log login attempts in the audit trail | ||
---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | Pierre Prinetti <pprinett> |
Component: | apiserver-auth | Assignee: | Pierre Prinetti <pprinett> |
Status: | CLOSED ERRATA | QA Contact: | Xingxing Xia <xxia> |
Severity: | medium | Docs Contact: | |
Priority: | unspecified | ||
Version: | 4.10 | CC: | mfojtik, surbania |
Target Milestone: | --- | ||
Target Release: | 4.11.0 | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Enhancement | |
Doc Text: |
Feature: Include logins mediated by external identity providers to the login audit trail.
Reason: Enable the inspection of successul, failed and errored login attempts when an external identity provider has been set up for OpenShift.
Result: OpenShift's login audit trail contains successful, failed and errored login attempts to the OpenShift console when login is mediated by an external identity provider.
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | 2022-08-10 11:12:00 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Pierre Prinetti
2022-05-16 08:58:38 UTC
This bug is tested via https://issues.redhat.com/browse/AUTH-6 cases with google, github, gitlab openid, google openid, ldap, request header, basic auth IDPs, work well in the annotations in audit logs for successful and failed logins. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Important: OpenShift Container Platform 4.11.0 bug fix and security update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2022:5069 |