-
Task
-
Resolution: Done
-
High
-
Casablanca Release
-
None
-
Casablanca-RC1 (10/12-10/25), Casablanca-RC2 (10/26-11/7)
AAF will be used with all other non-AAF authentication methods disabled in the PDP-D.
This has a dependency on AAF having the necessary bootstrap data. During pairwise testing in SB07, there was missing bootstrapping data that will be added to the next cadi aaf release by instrumental.
This task will be completed when the new bootstrap data additions are officially supported, as otherwise, it will fail healthchecks and other basic operations.
A summary, this is the missing AAF data (see also AAF-516):
perm ungrant org.onap.policy.pdpd.telemetry newton get org.onap.policy.pdpd.admin
perm delete org.onap.policy.pdpd.telemetry newton get
perm create org.onap.policy.pdpd.healthcheck * get org.onap.policy.pdpd.admin
perm create org.onap.policy.pdpd.healthcheck.configuration * get org.onap.policy.pdpd.admin
perm grant org.onap.policy.pdpd.healthcheck * get org.onap.policy.pdpd.monitor
role user add org.onap.policy.pdpx.admin demo@people.osaaf.org
role user add org.onap.policy.pdpx.admin policy@policy.onap.org
role delete org.onap.policy.member
- is cloned by
-
POLICY-1217 PDP-X: enable AAF at startup and disable default authentication
- Closed
- relates to
-
AAF-516 AAF guidance on Policy configuration on vanilla ONAP install
- Closed