Bootstrap FreeKB - OpenShift - Install Red Hat Single Sign On (SSO) Operator on the command line
OpenShift - Install Red Hat Single Sign On (SSO) Operator on the command line
Updated:   |  OpenShift articles

There are multiple different types of Identity Providers (IdP) that OpenShift can use for authentication.

Both the Red Hat build of the Keycloak Operator and Red Hat Single Sign-On (SSO) (this article) use keycloak as the backend Identity Provider (IdP) system. Red Hat Single Sign-On (SSO) is much easier to install and configure but may limit you from being able to use or configure certain features. For example, Red Hat Single Sign-On (SSO) installs and configures a Postgres SQL database for you, whereas with Red Hat build of the Keycloak Operator you install and configure the Postgres SQL database.

Sign into OpenShift.

oc login -u admin

 

Let's use the oc new-project command to create a project named sso.

oc new-project sso

 

Let's create the following YAML file, replacing <namespace> with the project you just created, "sso" in this example.

apiVersion: operators.coreos.com/v1
kind: OperatorGroup
metadata:
  name: rhsso-operator-group
spec:
  targetNamespaces:
  - <namespace>
---
apiVersion: operators.coreos.com/v1alpha1
kind: Subscription
metadata:
  name: rhsso-operator
spec:
  channel: stable
  installPlanApproval: Manual
  name: rhsso-operator
  source: redhat-operators
  sourceNamespace: openshift-marketplace

 

Let's use the oc apply command to install the Operator.

oc apply --filename sso.yaml

 

The oc get operators command should include the rhsso-operator.

~]$ oc get operators
NAME                                               AGE
rhsso-operator.sso                                 4m55s

 

And the oc get all command should return a pod, service, deployment and replica set.

~]$ oc get all
NAME                                  READY   STATUS    RESTARTS   AGE
pod/rhsso-operator-586796996c-wbwvl   1/1     Running   0          3m59s

NAME                             TYPE        CLUSTER-IP      EXTERNAL-IP   PORT(S)             AGE
service/rhsso-operator-metrics   ClusterIP   10.11.12.13   <none>        8383/TCP,8686/TCP   3m18s

NAME                             READY   UP-TO-DATE   AVAILABLE   AGE
deployment.apps/rhsso-operator   1/1     1            1           3m59s

NAME                                        DESIRED   CURRENT   READY   AGE
replicaset.apps/rhsso-operator-586796996c   1         1         1       3m59s

 

Next you will setup keycloak resource for Red Hat Single Sign On (SSO).

 

Did you find this article helpful?

If so, consider buying me a coffee over at Buy Me A Coffee


Comments


Add a Comment


Please enter b780ff in the box below so that we can be sure you are a human.