Hello,
I spend over 17hours to get ldap work for our librenms - but it won’t… Maybe somebody can help which variables I do need.
Following ldapsearch gets me all users in the specified group:
ldapsearch -v -H ldaps://ldap.example.com -b “dc=example,dc=com” -W -D userid=reader,dc=example,dc=com ‘(&(objectclass=inetOrgPerson)(memberof=cn=librenms,ou=groups,dc=example,dc=com))’
Following Tree-View we have:
Basedn:
dc=example,dc=com
- uid=reader,dc=example,dc=com
- ou=users
++ ou= company
+++ cn = sales
++++ cn=usernamex,cn=sales,ou=company,ou=users,dc=example,dc=com
+++ cn = technical
++++ cn=username1,cn=technical,ou=company,ou=users,dc=example,dc=com
++++ cn = username2,cn=technical,ou=company,ou=users,dc=example,dc=com - ou=groups
++ cn = librenms
+++ cn = administrator
++++ cn=username1,cn=technical,ou=company,ou=users,dc=example,dc=com
+++ cn = servicedesk-users
++++ cn=username2,cn=technical,ou=company,ou=users,dc=example,dc=com
I’d like to set up two different groups for privileges:
$config[‘auth_ldap_groups’][‘administrator’][‘level’] = 10;
$config[‘auth_ldap_groups’][‘servicedesk-users’][‘level’] = 5;
But it doesn’t matter how I try I do not get it to work.
Can anyone maybe explain the variables - which one are required (except the server, port usw.).
Always get invalid credentials - but they’re right because with ldapsearch I get what I want.
Our java applications are so much easier to get work with ldap
best regards
Jenny