mirror of https://github.com/open-metadata/OpenMetadata.git synced 2025-11-03 20:19:31 +00:00

Pere Miquel Brull 9d5c3a490f

MINOR - Prepare 1.3 docs directories (#14357 )

2023-12-13 18:33:08 +05:30

1.5 KiB

Raw Blame History

title	slug
Azure SSO for Bare Metal	/deployment/security/azure/bare-metal

Azure SSO for Bare Metal

Get the Client Id and Tenant ID from Azure Application configured in Step 3.

Get the Azure Service Application Client Id, Client Secret, Authority, Scopes from the information collected in Step 9.

Update conf/openmetadata.yaml

authenticationConfiguration:
  provider: "azure"
  publicKeyUrls:
    - "https://login.microsoftonline.com/common/discovery/keys"
    - "http://{your openmetadata domain}/api/v1/config/jwks" # Update with your Domain and Make sure this "/api/v1/config/jwks" is always configured to enable JWT tokens
  authority: "https://login.microsoftonline.com/{Tenant ID}"
  clientId: "{Client ID}" # Azure Application
  callbackUrl: "http://localhost:8585/callback"

Then,

Update authorizerConfiguration to add login names of the admin users in adminPrincipals section as shown below.
Update the principalDomain to your company domain name.

authorizerConfiguration:
  className: "org.openmetadata.service.security.DefaultAuthorizer"
  # JWT Filter
  containerRequestFilter: "org.openmetadata.service.security.JwtFilter"
  adminPrincipals:
    - "user1"
    - "user2"
  principalDomain: "open-metadata.org"

{% partial file="/v1.3/deployment/configure-ingestion.md" /%}

1.5 KiB Raw Blame History

Azure SSO for Bare Metal

Update conf/openmetadata.yaml

1.5 KiB

Raw Blame History