This is the identity provider you will most likely use in your organization because of the popularity of LDAP (Lightweight Directory Access Protocol). If you are building your OpenShift lab from scratch, you can use either FreeIPA or IdM—they are very easy to set up. Like other centralized identity management solutions, LDAP spares you the need to synchronize changes to password files between masters in the case of multiple masters setup.

A configuration snippet from the master configuration file for this provider could look like the following:

...<output omitted>...  identityProviders:          - challenge: true       login: true                            mappingMethod: claim           name: ldap                   provider:                  apiVersion: v1      kind: LDAPPasswordIdentityProvider         attributes:                id:                                   - dn ...