Hi Guys,
I’ve integrated LDAP with librenms systems, my configs are below, bit since I’m using OTP/MFA, it breaks user connectivity, please advice if there is any fix
“Issue: New behavior introduced sometime late last year/earlier this year with the ldap library causes a double bind to happen with the authenticated user”
Authentication Model
Replace ldap auth with mysql for local user (if ldap goes down)
$config[‘auth_mechanism’] = “ldap”;
$config[‘auth_ldap_server’] = ‘x.x.x.x’;
$config[‘auth_ldap_port’] = 389;
$config[‘auth_ldap_prefix’] = ‘uid=’;
$config[‘auth_ldap_suffix’] = ‘,cn=users,cn=accounts,dc=x,dc=x’; // appended to usernames
$config[‘auth_ldap_groupbase’] = ‘cn=groups,cn=accounts,dc=x,dc=x’; // all groups must be inside this
$config[‘auth_ldap_binduser’] = ‘ldapbind’; // will use auth_ldap_prefix and auth_ldap_suffix
$config[‘auth_ldap_bindpassword’] = 'xxxxxxxxxxx;
$config[‘auth_ldap_groupmemberattr’] = ‘member’;
$config[‘auth_ldap_userdn’] = true;
$config[‘auth_ldap_groups’][‘netops’][‘level’] = 10; // set netops group to admin level
$config[‘auth_ldap_groups’][‘devops’][‘level’] = 5; // set devops group to global read only level
#$config[‘auth_ldap_groups’][‘support’][‘level’] = 1; // set support group as a normal user