Update docs/how-to-guides/new-user-guides/authentication-permissions-…

…and-global-configuration/authentication-config/configure-keycloak-oidc.md Co-authored-by: Billy Tat <[email protected]>
rancher · Feb 3, 2025 · 4fef593 · 4fef593
1 parent d903e03
commit 4fef593
Showing 1 changed file with 12 additions and 9 deletions.
diff --git a/...sions-and-global-configuration/authentication-config/configure-keycloak-oidc.md b/...sions-and-global-configuration/authentication-config/configure-keycloak-oidc.md
@@ -160,12 +160,15 @@ When you fill the **Configure a Keycloak OIDC account** form and click on **Enab
 ### Unable to See Groups When Assigning Global Roles
 
 If you use a user that is not part of any groups for initial setup, then you cannot search for groups when trying to assign a global role.
-This can't be updated through the UI. You can do one of the following workaround.
-
-- **Workaround 1:** Edit the `authconfig/keycloakoidc` on Rancher local:
-   ```bash
-   kubectl edit authconfigs.management.cattle.io keycloakoidc
-   ```
-   Set `groupSearchEnabled: true`.
-
-- **Workaround 2:** Reconfigure the Keycloak OIDC setup using a user that is assigned to at least one group in Keycloak.
+To resolve this, you can either:
+
+1. Manually edit the `authconfig/keycloakoidc` object to enable group search.
+
+    1. On the Rancher server:
+     ```bash
+     kubectl edit authconfigs.management.cattle.io keycloakoidc
+     ```
+    1. Set `groupSearchEnabled: true`.
+    1. Save your changes.
+
+1. Reconfigure your Keycloak OIDC setup using a user that is assigned to at least one group in Keycloak.