Configure SSO

Overview

OpenGovernance includes DexIDP to enable SSO with a OIDC provider. By default plain login and password are included. OIDC setup is relatively straight forward.

Step 1 - Generate OIDC Credentials with Azure

Create App Registration in Azure
Configure Call back URL and app
Generate Secrets
Download Manifest

Detailed step-by-step guide is available here.

After OIDC Configuration is applied, please allow for 2-3 mins for the Services to acknowledge.

a. Open a browser in an incognito mode

b. Login to the application using OIDC Credentials

c. Elevate the OIDC user as Admin (this is to ensure you continue to have admin privileges as OIDC

Step 3 - Disable Static password

In "infrastructure/sso" folder, disable-static-password.yaml

git clone https://github.com/kaytu-io/automation
cd infrastructure/sso
kubectl apply -f disable-static-password.yaml

PreviousAWS NextFAQ

Last updated 7 days ago

Overview

Step 1 - Generate OIDC Credentials with Azure

Step 2 - Login under OIDC Credentials and elevate to an Admin

Step 3 - Disable Static password