Details
-
Help
-
Resolution: Not A Bug
-
Blocker
-
None
-
Professional Edition
Description
Hello,
I'm having some trouble getting my Observium config to successfully authenticate with our LDAP (Active Directory) servers.
I suppose I have two problems.
The first is that I'm not certain that I have the correct ldap entries in config.php and I was hoping somebody could quickly validate these look correct (My goal is to configure TLS but I wanted to get things working over 389 before I go and complicate things with Certs/Groups so that's why this is currently configured this way):
$config['auth_mechanism'] = "ldap"; // default, other options: ldap, http-auth, please see documentation for config help
$config['auth_ldap_binddn'] = "cn=<user name>,ou=services,ou=users,ou=<ou>,dc=<domain>,dc=<domain>";
$config['auth_ldap_bindpw'] = "<password>";
$config['auth_ldap_attr']['uid'] = "sAMAccountName";
$config['auth_ldap_attr']['uidNumber'] = "objectSid";
$config['auth_ldap_attr']['cn'] = "name";
$config['auth_ldap_objectclass'] = "person";
$config['auth_ldap_server'] = "<AD Server Hostname- using FQDN>";
$config['auth_ldap_port'] = 389;
$config['auth_ldap_version'] = 3; # v2 or v3
$config['auth_ldap_starttls'] = FALSE;
$config['auth_ldap_prefix'] = "CN=";
$config['auth_ldap_suffix'] = "DC=<domain>,DC=<domain>";
The second issue I have is where to find logs of LDAP auth failures between Observium and AD. I've looked in most of the places that I can think of and I can't seem to find anything.
Here are the details of my install:
| Observium | 20.1.10233 (20th January 2020) |
| OS | Linux 4.15.0-74-generic [amd64] (Ubuntu 18.04) |
| Apache | 2.4.29 (Ubuntu) |
| PHP | 7.2.24-0ubuntu0.18.04.2 (OPcache: ENABLED) |
| Python | 2.7.17 |
| MySQL | 5.7.28-0ubuntu0.18.04.4 (extension: mysqli 5.0.12-dev) |
| SNMP | NET-SNMP 5.7.3 |
| RRDtool | 1.7.0 |
| Fping | 4.0 (IPv4 and IPv6) |
Please let me know if I've posed this to the wrong place as I wasn't sure if this is the correct forum for this.
Thank you for your help and support.
Cheers,
Mike