Support LDAPS client certificates #1425
Comments
|
Hi @bbenlazreg, Thanks for creating an issue! I think you are referring to these Could you share some details about your use case? What kind of LDAP provider are you using? Do you still have bind user credentials for searching LDAP when you using mTLS client certs? Got any more details about how you would use this feature? |
|
Yes I am referring to those parameters in Dex, I am using google Secure LDAP and yes I still need bind user credentials with client certs |
|
Thanks, that's helpful. I think you are referring to the certs described here: https://support.google.com/a/answer/9100660. Interesting that the article linked above also describes a workaround for clients that don't support client certs. That workaround seems like it would be possible to configure as a sidecar container in the Supervisor pods as a workaround, but I haven't tried that myself. Supporting those configuration options seems like a good feature, although I'm not sure how quickly we can get to it. Maybe someone might be interested in attempting an implementation PR in the meantime? |
pinniped-ci-bot
added
enhancement
pinniped-ci-bot
added
priority/backlog
Currently LDAPIdentityProvider doesn't support passing client cert and keys for LDAPS authentification like Dex does, is it possible to add this feature ?
The text was updated successfully, but these errors were encountered: