-
Understand AD LDAP structure and naming. Read the docs on the components
Refer to the OpenShift docs for the LDAP identity provider and LDAP group syncing.
-
Create the OAuth config
# create a secret for the bindDN user password
Nate Revo therevoman
fabiand
/ ssh_config
Last active
December 15, 2023 07:18
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # virtctl is in your $PATH | |
| # You are logged into a cluster | |
| # Then the snippet below enables seamless ssh login. | |
| # Usage `ssh [<user>@]<vmname>.<namespace>.ocp` | |
| # "ocp" can be anything, for convenience replace with your cluster's base fqdn | |
| host *.ocp | |
| ProxyCommand virtctl port-forward --stdio=true %h %p |
dlbewley
/ asciinema-clear-screen.json
Created
August 8, 2021 23:25
How to add a clear screen command to an asciinema recording
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [0.000001, "o", "\u001b[H\u001b[J"] |
acsulli
/ openshift_authn_authz.md
Created
July 1, 2021 19:59
Supporting information for the OpenShift.tv live stream here: https://www.youtube.com/watch?v=RG6xt2q72nw
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| podman login registry.redhat.io | |
| export domain=quay.ralvares.local | |
| export QUAY=/data/quay | |
| mkdir -p $QUAY/postgres-quay | |
| mkdir $QUAY/clair | |
| mkdir -p $QUAY/config/extra_ca_certs | |
| mkdir $QUAY/storage |
luckylittle
/ ocp4_all_resources.md
Created
March 12, 2021 01:48
How can I list all resources and custom resources in OpenShift 4
oc get crd -o=custom-columns=NAME:.metadata.name,CR_NAME:.spec.names.singular,SCOPE:.spec.scope
oc get $(oc get crd -o=custom-columns=CR_NAME:.spec.names.singular --no-headers | awk '{printf "%s%s",sep,$0; sep=","}') --ignore-not-found --all-namespaces -o=custom-columns=KIND:.kind,NAME:.metadata.name,NAMESPACE:.metadata.namespace
oc get $(oc api-resources --verbs=list -o name | awk '{printf "%s%s",sep,$0;sep=","}') --ignore-not-found --all-namespaces -o=custom-columns=KIND:.kind,NAME:.metadata.name,NAMESPACE:.metadata.namespace --sort-by='metadata.namespace'
displague
/ rhcos.ipxe
Last active
May 26, 2021 16:02
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!ipxe | |
| dhcp net0 | |
| set release 4.7 | |
| set zstream 0 | |
| set arch x86_64 | |
| set ignition-url https://metadata.platformequinix.com/userdata | |
| #set coreos-url https://mirror.openshift.com/pub/openshift-v4/dependencies/rhcos/${release}/${release}.${zstream} |
bmaupin
/ convert-deploymentconfig-to-deployment.md
Last active
October 8, 2024 19:38
Convert OpenShift DeploymentConfig to Kubernetes Deployment
-
Change
apiVersionfrom:- apiVersion: v1
(or
apiVersion: apps.openshift.io/v1)to:
G-UK
/ Debootstrap Debian Arm64 OS for Raspberry Pi 3 & 4.md
Last active
November 21, 2025 18:23
Build a 64bit Debian OS for the Raspberry Pi using Debootstrap
The objective of these instructions is to create a complete Arm64 OS (Userland and Kernel) using Debian Debootstrap and RPI-Update for use on the Raspberry Pi 3 and 4.
Prerequisites:
- An existing Debian/Raspbian system (any architecture will do)
- An empty SD card formatted as per a standard Raspbian installation mounted to /mnt/sd on the build system
- 1st Partition 0-256MB = FAT32 (Mount to /mnt/sd/boot)
- 2nd Partition 256MB+ = EXT4 (Mount to /mnt/sd)
iamcryptoki
/ fix-sysctl.txt
Created
July 29, 2019 09:20
Fix sysctl: cannot stat /proc/sys/net/bridge/bridge-nf-call-iptables.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ modprobe bridge | |
| $ echo "net.bridge.bridge-nf-call-iptables = 1" >> /etc/sysctl.conf | |
| $ sysctl -p /etc/sysctl.conf | |
| sysctl: cannot stat /proc/sys/net/bridge/bridge-nf-call-iptables: No such file or directory sysctl: cannot stat /proc/sys/net/bridge/bridge-nf-call-ip6tables: No such file or directory | |
| # SOLUTION | |
| $ modprobe br_netfilter | |
| $ sysctl -p /etc/sysctl.conf |
guaxinim
/ S2i from a private repo
Last active
July 27, 2022 23:22
Openshift S2i from a private repo
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ssh-keygen -C "openshift-source-builder/repo@github" -f repo-at-github -N '' | |
| oc secrets new-sshauth elvis-secret --ssh-privatekey=repo-at-github | |
| secrets add serviceaccount/builder secrets/elvis-secret | |
| oc set build-secret --source bc/serpro-ws elvis-secret | |
| oc new-build fis-java-openshift~ssh://git@gitlab.consulting.redhat.com:2222/erocha/serpro-ws.git --build-secret elvis-secret | |
| oc new-app serpro-ws |
NewerOlder