From fcffab9a4c25452e303fd9874a8dfa75459fee8a Mon Sep 17 00:00:00 2001 From: Anjali Telang Date: Wed, 1 Sep 2021 13:23:26 -0400 Subject: [PATCH] Add community info and resolve some minor issues Signed-off-by: Anjali Telang --- site/content/posts/2021-08-27-supporting-ad-oidc-workflows.md | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/site/content/posts/2021-08-27-supporting-ad-oidc-workflows.md b/site/content/posts/2021-08-27-supporting-ad-oidc-workflows.md index 2b1a28b9..2e33c2d1 100644 --- a/site/content/posts/2021-08-27-supporting-ad-oidc-workflows.md +++ b/site/content/posts/2021-08-27-supporting-ad-oidc-workflows.md @@ -60,7 +60,7 @@ Here’s what an example configuration looks like password: "YOUR_PASSWORD" ``` -You can also customize the userSearch and groupSearch as shown in the examples in our reference documentation [here] ({{< ref "docs/howto/configure-supervisor-with-activedirectory.md" >}}) +You can also customize the userSearch and groupSearch as shown in the examples in our reference documentation [here]({{< ref "docs/howto/configure-supervisor-with-activedirectory.md" >}}) In the above example, users will be able to login with either their sAMAccountName (i.e. pinny), userPrincipalName (i.e. pinny@example.com) or mail attribute. This reduces the need to tell users what specific value from AD must be provided in the username field. Regardless of what value the user provides in the username field, the userPrincipalName will be used as the identity in Kubernetes clusters. UPN is used as the username attribute by default as it is unique within an AD forest. Similarly, a UPN is generated for each group using its sAMAccountName attribute and the AD domain hostname. The default AD configuration finds both direct and nested groups. @@ -109,3 +109,5 @@ What other configurations do you need for authenticating users to your Kubernete Find us in [#pinniped](https://kubernetes.slack.com/archives/C01BW364RJA) on Kubernetes Slack, [create an issue](https://github.com/vmware-tanzu/pinniped/issues/new/choose) on our Github repository, or start a [Discussion](https://github.com/vmware-tanzu/pinniped/discussions). + +{{< community >}}