Configure Mission Control to use OpenID Connect (OIDC) for authentication

Mission Control can use the OpenID Connect (OIDC) or LDAP protocols for authentication. This topic describes configuring the OpenID Connect setup. See Configure Mission Control to use LDAP for the other supported authentication protocol.

Prerequisites

  • An instance of Mission Control, installed through either your own Kubernetes cluster or the runtime installer. See planning for your installation.

  • A downloaded Mission Control license file.

    Mission Control requires a license file to provide Kubernetes Off-The-Shelf (KOTS) or Helm with required information out installation. Information includes customer identifiers, software update channels, and entitlements.

    Are you exploring Mission Control as a solution for your organization? Fill out this registration form to request a community edition license.

    If you need a replacement license file or a non-community edition, or want to convert your Public Preview license to use a stable channel release version, please contact your account team.

Configure Mission Control to use OpenID Connect (OIDC) for authentication

  1. Port-forward to the admin console:

    kubectl kots admin-console
  2. Navigate to http://127.0.0.1:8800 (password admin) and edit the Mission Control configuration to enable the OIDC connector. Fill in the authentication and connector sections by providing your environment’s OIDC information.

  3. Deploy the new configuration.

Test the connection

  1. Navigate to the Mission Control User Interface (UI) and try to connect with OIDC.

  2. You can also remove the admin user in the Mission Control configuration, and the connect with email option should no longer be available.

Was this helpful?

Give Feedback

How can we improve the documentation?

© 2024 DataStax | Privacy policy | Terms of use

Apache, Apache Cassandra, Cassandra, Apache Tomcat, Tomcat, Apache Lucene, Apache Solr, Apache Hadoop, Hadoop, Apache Pulsar, Pulsar, Apache Spark, Spark, Apache TinkerPop, TinkerPop, Apache Kafka and Kafka are either registered trademarks or trademarks of the Apache Software Foundation or its subsidiaries in Canada, the United States and/or other countries. Kubernetes is the registered trademark of the Linux Foundation.

General Inquiries: +1 (650) 389-6000, info@datastax.com