+3
Bonjour, je me permets de vous contacter, concernantl’utilisation OpenId Connect je cherche de l'aide pour le mettre en place j’ai bien le Client ID et secret id avec BaseUrl mais je n'arrive pas à me connecter via « connectWithOpenIdConnect »Aucun message « 504 Gateway Time-out «
Centreon 21.04.04avec 21.0.7 pour le web
J’ai des logs dans /var/log/centreon/login.log
Voici ma conf
*Screenshot deleted because of confidential information*
Best answer by Laurent
View original
+18
Hi
Regards,
+3
Hi @Laurent
For the moment my manager does not wish to make a version upgrade.to upgrade just for the web? is possibly?
Regards,
+18
Yes you can only update centreon-web and all dependencies using:
yum update centreon-webRegards,
+3
Hello
I have just updated the centreon-web to 21.04.10, I have this error now :
2022-02-07 12:18:08|-1|0|0|[OpenId] [Error] Unable to get Token Access Information: RestNotFoundException, message: Page not found
2022-02-07 12:18:08|-1|0|0|[OpenId] [Error] Unable to get login from claim: email
Regards,
+3
Thanks to anyone who has an idea ;)
+3
Hello
+18
Hi
It means that the Centreon central server can’t access to the /token endpoint.
Can you try to make a curl on this endpoint?
+3
Hi
indeed the curl does not respond
[root@br-hop-po15 ~]$curl https://login.microsoftonline.com/85eca096-674d-4fd9-9a9e-ae1178e2ee56/oauth2/v2.0/token
I think I have to configure my proxy to go out?
+18
Yes if you need a proxy, you have to configure it into Centreon using “Administration > Parameters > Centreon UI” menu.
To test in CLI you need to use:
export http_proxy=http://myproxy:port
export https_proxy=https://myproxy:port
+3
*Screenshot deleted because of confidential information*
+3
Hi
I configured the proxy “Administration > Parameters > Centreon UI” menu.
unfortunately always errors
+18
Ok now Centreon receive the token of the connected user on your IDP but Centreon can’t get additional information (token introspection endpoint).
Our documentation describes as examples:
Can you check your configuration?
+3
Hi
I confirm that I have the same conf as what you told me. unfortunately always errors
*Screenshot deleted because of confidential information*
+3
CONF side AZURE
+18
We performed tests 3 months ago with this configuration and every was OK, may be they change their configuration.
But the good news is now Centreon passed 2 firsts steps:
Only last two steps are missing
+3
Hi
I don't know from whom? I will look at the microsoft docs.
Honestly, I've been struggling for 10 days to activate openid.Thanks again for your time,
+18
Regards,
+3
Hi
after exporting the proxy
[root@br-hop-po15 ~]$curl https://login.microsoftonline.com/85eca096-674d-4fd9-9a9e-ae1178e2ee56/oauth2/v2.0/introspect
[root@br-hop-po15 ~]$curl https://graph.microsoft.com/oidc/userinfo
curl: (56) Received HTTP code 407 from proxy after CONNECT
+18
Can you try by deleting “/introspect” endpoint (keep empty)?
+3
Hi
after adding microsoft.com in my proxy whitelist it works again
[root@br-hop-po15 ~] /var/log/centreon]$ curl https://graph.microsoft.com/oidc/userinfo
{"error":{"code":"InvalidAuthenticationToken","message":"Access token is empty.","innerError":{"date":"2022-02-08T14:54:43","request-id":"8c49f075-2dd3-48d3-8223-48c73a7ef963","client-request-id":"8c49f075-2dd3-48d3-8223
+3
tout ça comme endpoint: coté équipe AZURE
*Screenshot deleted because of confidential information*
+18
+3
Can you try by deleting “/introspect” endpoint (keep empty)?
already tested nothing happens when I click on
+18
Can you give me complete error log trace (/var/log/centreon/login.log) when you click on button?
+3
deleting “/introspect”
no trace in the logs /var/log/centreon/login.log
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.