Nagios Support Forum

Not that I'm aware of but that might be the issue, I'll set it up and see if we can get it working.

ssax wrote:Not that I'm aware of but that might be the issue, I'll set it up and see if we can get it working.

Fantastic! Looking forward to seeing your results.

The problem is that IPA uses uid= instead of CN= so it will not work at this point, I tried to get it working but I was unable to because some of the files are encrypted, the developers will need to fix it.

I've created a bug report for this:

ssax wrote:The problem is that IPA uses uid= instead of CN= so it will not work at this point, I tried to get it working but I was unable to because some of the files are encrypted, the developers will need to fix it.

I've created a bug report for this:

Code: Select all

NEW TASK ID 6063 created - Nagios Log Server Bug Report: LDAP/AD import doesn't work with IPA server

That's good to know. Thank you for your efforts. Is it reasonable to expect this "fix" in the next release?

I'm unsure of that, that is up to the developers and their priorities.

Importing users may not work with free IPA because of the uid= part of the username. However if you edit a user (or create one) and select the LDAP server you want them to authenticate with using the drop down, it may work by setting the uid=username,cn=something and it will add the rest of the dn=x,dn=com at the end when you set up your LDAP server. The import was created with OpenLDAP.

jomann wrote:Importing users may not work with free IPA because of the uid= part of the username. However if you edit a user (or create one) and select the LDAP server you want them to authenticate with using the drop down, it may work by setting the uid=username,cn=something and it will add the rest of the dn=x,dn=com at the end when you set up your LDAP server. The import was created with OpenLDAP.

The only way I am able to authenticate is by supplying the username as: uid=username,cn=users,cn=accounts,dc=domain,dc=tld. As you can see, I can successfully authenticate (as shown in my original post) but the import users box is not populated with the users in the container.

I think what jomann is saying is that you could manually add a user (not import) and then select the Auth Type of LDAP and set the User's Full DN to enable LDAP auth to work. I will test it on mine and let you know.

It did work for me with these settings:
Then I add a user manually with these settings:
Then I was able to login as that user through ldap auth.

Bingo! I was not aware that I could do that. I was under the impression the only way to add LDAP users was through the import function. I am able to add users manually now. While the importing feature would be fantastic, this will suffice for the time being. Thank you!