I did follow that pdf thinking we used TLS along with https://assets.nagios.com/downloads/nag ... ios-XI.pdf and I don't believe we will be going to TLS anytime soon. So we are basically just using the default port of 389 with no encryption.
--Berto
LDAP / Active Directory Integration Configuration
Re: LDAP / Active Directory Integration Configuration
Hmm.
When you try to import users, what is the error you receive?
To clarify - is the DNS hostname.domain-name.com resolvable from the Nagios machine?
When you try to import users, what is the error you receive?
To clarify - is the DNS hostname.domain-name.com resolvable from the Nagios machine?
Former Nagios Employee
Re: LDAP / Active Directory Integration Configuration
I have attached a screenshot of the error I received. Yes it is resolvable from the Nagios server.
[nagios-server]:(1028/0)-$ telnet ldapserver 389
Trying XXX.XXX.XX.X...
Connected to ldapserver.domain-name.com (XXX.XXX.XX.X).
Escape character is '^]'.
I can also do a simple ldapsearch from the Nagios Server
[nagios-server]:(1033/0)-$ ldapsearch -h ldap-server -x -b "uid=user-name,ou=People,dc=domain,dc=name,dc=com"
# extended LDIF
#
# LDAPv3
# base <uid=user-name,ou=People,dc=domain,dc=name,dc=com> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#
# user-name, People, domain-name
dn: uid=user-name,ou=People,dc=domain,dc=name,dc=com
loginShell: /bin/tcsh
shadowLastChange: 16265
SolarisAttrKeyValue: defaultpriv=basic,dtrace_proc,dtrace_user;type=normal
homeDirectory: /home/user-name
gecos: User Name
gidNumber: 102
uidNumber: 31989
cn: user-name
uid: user-name
objectClass: shadowAccount
objectClass: posixAccount
objectClass: account
objectClass: top
objectClass: SolarisUserAttr
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
--Berto
[nagios-server]:(1028/0)-$ telnet ldapserver 389
Trying XXX.XXX.XX.X...
Connected to ldapserver.domain-name.com (XXX.XXX.XX.X).
Escape character is '^]'.
I can also do a simple ldapsearch from the Nagios Server
[nagios-server]:(1033/0)-$ ldapsearch -h ldap-server -x -b "uid=user-name,ou=People,dc=domain,dc=name,dc=com"
# extended LDIF
#
# LDAPv3
# base <uid=user-name,ou=People,dc=domain,dc=name,dc=com> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#
# user-name, People, domain-name
dn: uid=user-name,ou=People,dc=domain,dc=name,dc=com
loginShell: /bin/tcsh
shadowLastChange: 16265
SolarisAttrKeyValue: defaultpriv=basic,dtrace_proc,dtrace_user;type=normal
homeDirectory: /home/user-name
gecos: User Name
gidNumber: 102
uidNumber: 31989
cn: user-name
uid: user-name
objectClass: shadowAccount
objectClass: posixAccount
objectClass: account
objectClass: top
objectClass: SolarisUserAttr
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
--Berto
You do not have the required permissions to view the files attached to this post.
Re: LDAP / Active Directory Integration Configuration
What happens if you try to use the IP instead of the hostname for the AD/LDAP server?
Edit: You're not using TLS.
Edit: You're not using TLS.
Former Nagios Employee.
me.
me.
Re: LDAP / Active Directory Integration Configuration
When using just the IP address of the server I still get the same error. Yes I was mistaken thinking our environment used TLS but my LDAP admin when trying to assist me in getting LDAP configured notified me that we don't use TLS.
--Berto
--Berto
Re: LDAP / Active Directory Integration Configuration
Let's move this into a ticket so that we can get a remote session setup, please send an email to [email protected] with a descriptive subject and a detailed body with a link back to this thread.
Thank you
Thank you
Re: LDAP / Active Directory Integration Configuration
Locking and will continue in the ticket.
Thank you
Thank you