admin管理员组文章数量:1352150
I have a off the shelf platform called confluent platform which is a enterprise solution based on Apache kafka. One of its component is Confluent Control center (C3) which is a GUI portal to manage/view certain things in the cluster. As per my anization policy I have enabled MFA integration for it via Microsoft Entra OIDC. On this cluster , for internet access to select few URLs we have proxy enabled.
I can use this proxy , when set explicitly with curl or openssl connect can reach to
login.microsoftonline
But this application - C3 cant seem to be using proxy and I get below once the OTP is entered and C3 tries to get access code based on received auth code.
Issue:
{"status_code":500,"message":"javax.ws.rs.ProcessingException: java.UnknownHostException: login.microsoftonline"}
Whats done so far :
I have set proxy in /etc/environment file.
Added proxy details to service file as below
Environment="https_proxy=XXXX:443" Environment="http_proxy=XXXX:443" Environment="no_proxy=localhost,127.0.0.1,.YYYY,.internal.YYYY,.internal.CCCC,.PPPP,*.BBBB"
Environment="JAVA_OPTS=-Dhttp.proxyHost= XXXX -Dhttp.proxyPort=443 -Dhttps.proxyHost=XXXX -Dhttps.proxyPort=443 -Dhttp.nonProxyHosts=loc> . . .
ping or nslookup doesnt work on login.microsoftonline on this server.
This service is a java code runs via a nologin user in rhel8.
Question:
How can we force to use proxy for an application which doesn't have a facility to mention proxy details in its configuration file?
My OS admin skills are limited hence little hesitant on implementing solution I found on the internet
Could you please help?
Thanks, Swapnil
本文标签:
版权声明:本文标题:multi factor authentication - Force connection through proxy for a service running with a nologin user - Stack Overflow 内容由网友自发贡献,该文观点仅代表作者本人, 转载请联系作者并注明出处:http://www.betaflare.com/web/1743909672a2560160.html, 本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌抄袭侵权/违法违规的内容,一经查实,本站将立刻删除。
发表评论