Hi everyone,
I am trying to install Open OnDemand on our login node of our cluster. I have issue to enable the https port.
The system we use is: Rocky Linux release 8.4, ondemand-3.0.3-1.el8.x86_64, ondemand-dex-2.36.0-1.el8.x86_64.
I am setting up using ondemand-dex with LDAP.
There is also an issue to use LDAP. Now I need help first on the SSL/HTTPS.
The HTTP/80 seems works fine, while after I enabled the SSL/HTTPS, when I tried to open the ondemand webportal on a different computer, it directs me to: https:/myserverhere/pun/sys/dashboard, and reports 500 error:
===================================
" Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.
Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error.
More information about this error may be available in the server error lo"
===================================
The strange thing is, that I can manually to open the following link:
https://myserver here:5554/auth/ldap/login?back=&state=lzixgjlc7xxxu
or even I can open
http://myserverhere:5556/auth/ldap/login?back=&state=lzixgjlc7xxxuilzf
The contents of ood_portal.yml look like:
servername: ‘myserverhere’
ssl:
- ‘SSLCertificateFile “/etc/pki/tls/certs/ondemand.crt”’
- 'SSLCertificateKeyFile “/etc/pki/tls/private/ondemand.key”
dex_uri: false
dex:
ssl: true
http_port: “5556”
https_port: “5554”
tls_cert: /etc/ood/dex/ldap.pem
tls_key: /etc/ood/dex/ldap.key
connectors:
- type: ldap
id: ldap
name: LDAP
config:
host: ldapserver:636
rootCA: /etc/ood/dex/ca.pem
insecureSkipVerify: false
bindDN: (hidden)
bindPW: (hidden)
userSearch:
baseDN: (hidden)
filter: (hidden)
cn: uid
username: uid
idAttr: uid
emailAttr: mail
displayName: gecos
preferredUsernameAttr: uid
groupSearch:
baseDN: (hidden)
filter: (hidden)
userMatchers:
- userAttr: DN
groupAttr: member
gidNumber: gidNumber
nameAttr: cn
Thanks in advance for your help!
Best,
Feng