- RHSSO installed using the (legacy)
RH Single Sign-On
operator version 7.x on OpenShift - You install the RHSSO instance several times using the same database
- Typical use case: deployment with
helm install
and thenhelm upgrade
- Typical use case: deployment with
- All login attempts to the RHSSO console fail with
Invalid username or password
error message - As a side effect, the RHSSO operator might not be able to reconcile the updated custom resources with the RHSSO
configuration, with
Invalid user credentials
error
A new password is generated in the ADMIN_PASSWORD
property of the credential-rhsso
Secret for the admin
user, but the DB record storing the credential information for this user is not
updated with the same data.
Follow these instructions to reset the password for the admin
user:
- In the RHSSO namespace, open the terminal console for the Pod
keycloak-0
- Run these commands to create a
test
user with passwordtest123
:
/opt/eap/bin/add-user-keycloak.sh -u test -p test123
/opt/eap/bin/jboss-cli.sh --connect --command=reload
- Login to the RHSSO console with the new
test/test123
credentials - Reset the password of the
admin
user in theMaster
realm to match the value of theADMIN_PASSWORD
property in thecredential-rhsso
Secret - At the end, you can delete the
test
user in the Master realm