keystone charm should expose chase_referrals setting
Bug #1663116 reported by
Brad Marshall
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Keystone LDAP integration |
Triaged
|
Wishlist
|
Unassigned | ||
keystone (Juju Charms Collection) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
To assist in making LDAP more usable, the keystone charm should expose the chase_referrals configuration as a juju config setting. This is particularly useful when using Active Directory domains as an authentication source.
This setting can be either a boolean, or unset to use the systems default behaviour.
To post a comment you must log in.
Note our use case for this is for use with multiple ldap domains, I believe there's work to create a subordinate charm in planning for this. I did notice we can use the ldap-config-flags option to do it, but thats only if the identity_backend is set to ldap, which is not the case for us.