We have configured Single Sign On for nagios application using apache webgate. SSO configuration includes OAM and OID. Once the nagios application accessd by users it will be redirected to OAM login page and it will validates the entered username and password from OID(LDAP.). After that we are able to login successful, but users not able to view the information on nagios page. Can you please let me know is there any additional configuration changes required to get it work.
But before implementing SSO, users are stored in htpasswd.users file under /usr/local/nagios/etc/htpasswd.users and those users able to access the information on the nagios page with out any issue.
<Directory "/usr/local/nagios/sbin">
Options ExecCGI
AllowOverride None
Order allow,deny
Allow from all
AuthName "Nagios Access"
AuthType Basic
AuthUserFile /usr/local/nagios/etc/htpasswd.users
Require valid-user
</Directory>
Ldap(OID) users failed to access the nagios information.
Re: Ldap(OID) users failed to access the nagios information.
I think the main issue is that the nagios vhost file still assumes basic auth. If you have a different auth mechanism, you will need to add or change the auth in the vhost file.
Former Nagios employee
"It is turtles. All. The. Way. Down. . . .and maybe an elephant or two."
VI VI VI - The editor of the Beast!
Come to the Dark Side.
"It is turtles. All. The. Way. Down. . . .and maybe an elephant or two."
VI VI VI - The editor of the Beast!
Come to the Dark Side.
Re: Ldap(OID) users failed to access the nagios information.
Hi,
After enabling the webgate, we are getting the OAM login page, and entering user credentials(which are stored in OID) and those are Authenticate successfully(that we can see in live http headers) but immediately giving the below error instead of giving nagios application page. Please let me know your thoughts on this.
Please find the attachement for error.
401 Error
Authorization required
After enabling the webgate, we are getting the OAM login page, and entering user credentials(which are stored in OID) and those are Authenticate successfully(that we can see in live http headers) but immediately giving the below error instead of giving nagios application page. Please let me know your thoughts on this.
Please find the attachement for error.
401 Error
Authorization required
- Attachments
-
Re: Ldap(OID) users failed to access the nagios information.
Might be a bit of a longshot, but can you put the "user:password@" in front of the URL you have shown in the screenshot?
Former Nagios employee
Re: Ldap(OID) users failed to access the nagios information.
I have disabled the direct ldap connection details in nagios.conf because OAM itself connect to OID and it has LDAP ID store to fetch the user details from OID.
Now I am able to get the OAM login page, and user getting the login page. But when clicking on Tactical overview link user could not find any run time monitoring information and also it is not showing the username who logged in.
Now I am able to get the OAM login page, and user getting the login page. But when clicking on Tactical overview link user could not find any run time monitoring information and also it is not showing the username who logged in.
Re: Ldap(OID) users failed to access the nagios information.
can you show us a screen shot of the tactical view (looking for if there is a username in upper right corner),
and also /etc/httpd.conf.d/nagios.conf and the /etc/httpd.conf.d/nagiosxi.conf.
and also /etc/httpd.conf.d/nagios.conf and the /etc/httpd.conf.d/nagiosxi.conf.