Software Development Kit (SDK) and API Discussions

Workaround for Ansible cert auth with SAML enabled

edannen
2,159 Views

Hello,

Does anyone have workaround for certificate authentication with SAML enabled on a cluster?

 

This is for AWX Tower, which is failing at ADFS auth when running a playbook against a SAML enabled cluster.

 

A curl command to the cluster usign the certificates works fine, error occurs when AWX tried to access API of the SAML enabled cluster.

 

Thanks!

 

1 ACCEPTED SOLUTION

edannen
1,965 Views

This issue is due to certificate chain issues. We are working with Netapp support to fix them.

View solution in original post

3 REPLIES 3

Ontapforrum
2,108 Views

I don't know about the workaround but looks like SAML enabled ONTAP Cluster and Ansible don't work together.

 

Is ONTAP SAML compatible with Ansible for ONTAP 9?
No, Ansible does not work with ONTAP SAML.
https://kb.netapp.com/Advice_and_Troubleshooting/Data_Storage_Software/ONTAP_OS/Is_ONTAP_SAML_compatible_with_Ansible_for_ONTAP_9

 

edannen
2,090 Views

Thanks for the reply...I shoudl have been more clear, the local account on the cluster is setup for cert authentication only (no SAML, etc). The issue is when AWX attempt so access the API, it redirects to ADFS and errors out. 

edannen
1,966 Views

This issue is due to certificate chain issues. We are working with Netapp support to fix them.

Public