FYI, it appears the instructions for configure AD/LDAP integration using SSL is incorrect (https://assets.nagios.com/downloads/nag ... d-LDAP.pdf) for RHEL 7 (we are on 7.8). The instructions state that the certificate authority certificate should be copied to /etc/openldap/cacerts (along with several steps to get to that point). The same steps are performed if you use the Web Site (Admin -> LDAP/AD Integration - Add Certificate). However, after performing these steps and verifying the correct certificate was included, I still could not add users from Active Directory.
In order to make it work, I had to copy the CA certificate to "/etc/pki/ca-trust/source/anchors" and run the "update-ca-trust" command to update CA trust store. After performing these steps I was able to authenticate to the AD servers. Also note that "ldapsearch" would not connect to AD without this change.
RHEL 7 Active Directory/LDAP Integration
-
benjaminsmith
- Posts: 5324
- Joined: Wed Aug 22, 2018 4:39 pm
- Location: saint paul
Re: RHEL 7 Active Directory/LDAP Integration
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Be sure to check out our Knowledgebase for helpful articles and solutions!
Be sure to check out our Knowledgebase for helpful articles and solutions!