If you want to remove a configured LDAP provider, you need to do following (assuming here the default name 'profile1', please rename according to your setup): 1. Remove provider configuration files rm /etc/ovirt-engine/extensions.d/profile1-authn.properties rm /etc/ovirt-engine/extensions.d/profile1-authz.properties rm /etc/ovirt-engine/aaa/profile1.properties 2. Restart ovirt-engine systemctl restart ovirt-engine The above will remove provider configuration, so users from this provider will no longer be able to login into engine. But those users still have permissions defined in engine, so if you want to remove those permissions you need to do following: 1. Login into webadmin and switch to Users tab 2. Remove all users from the provider you have removed above (they should have their Authorization provider set to 'profile1-authz'
Updated document: https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.1/html-single/administration_guide/#Removing_an_External_LDAP_Provider