Log server LDAP authentication issue

This support forum board is for support questions relating to Nagios Log Server, our solution for managing and monitoring critical log data.
Locked
NMFSTeam
Posts: 88
Joined: Thu Nov 12, 2015 9:01 am

Log server LDAP authentication issue

Post by NMFSTeam »

I am setting up a new Nagios Log Server on Ubuntu 20.04. Initial install has been completed, however I am attempting to setup LDAP authentication, following the directions in this document: https://assets.nagios.com/downloads/nag ... d-LDAP.pdf

It did not work, users are unable to authenticate with their LDAP credentials. Previously, when I had a similar issue on a CentOS installation of Nagios Log Server, I followed the directions outlined in this document, and it worked: https://assets.nagios.com/downloads/nag ... d-LDAP.pdf

However, the directions aren't lining up with what I am seeing on my Ubuntu 20.04 instance. First of all, OpenLDAP is not installed, so there is no /etc/openldap/ directory. I manually created the /etc/openldap directory, and then followed the directions. But now what? It says for Ubuntu to execute the following:

Code: Select all

cp root.crt /usr/local/share/ca-certificates/
Where is that root.crt file supposed to come from? Also, in the previous step, the /etc/openldap/ldap.conf file is supposed to be modified. I have no such file, since openldap isn't installed. Should it be installed?

Thank you in advance.
Top
User avatar
cdienger
Support Tech
Posts: 5045
Joined: Tue Feb 07, 2017 11:26 am

Re: Log server LDAP authentication issue

Post by cdienger »

Starting on page 6 of https://assets.nagios.com/downloads/nag ... d-LDAP.pdf are steps to import users from the LDAP server. Were you able to find and import the user on this step or was it failing at this point?

Page 5 and 6 also describe the LDAP settings available in NLS. What encryption method and port is selected on that page?

https://assets.nagios.com/downloads/nag ... d-LDAP.pdf may require some updating and we will look into it. From the looks of it, instead of using /etc/openldap Ubuntu 20 uses /etc/ldap. The ldap.conf that the documentation modifies can be found at/etc/ldap/ldap.conf.

The root.crt is going to be the certificate authority certificate. The pages before that describe where to find the CA in various environments and refer to it as ca_box293_cert.pem, ca_box293.crt, certnew.cer.
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Top
NMFSTeam
Posts: 88
Joined: Thu Nov 12, 2015 9:01 am

Re: Log server LDAP authentication issue

Post by NMFSTeam »

After using /etc/ldap and following the directions, all is working now. Thank you very much!
Top
ssax
Dreams In Code
Posts: 7682
Joined: Wed Feb 11, 2015 12:54 pm

Re: Log server LDAP authentication issue

Post by ssax »

Thank you for posting your resolution! I have sent a note to our documentation team requesting they update the document to show that it is /etc/ldap/ldap.conf on Debian/Ubuntu systems.

Let us know when we're okay to lock this up and marking it as resolved.

Thank you!
Top
Locked

Return to “Nagios Log Server”