Page 2 of 2
Re: LDAP / Active Directory Integration Configuration
Posted: Wed Feb 10, 2016 4:34 pm
by Berto
I did follow that pdf thinking we used TLS along with
https://assets.nagios.com/downloads/nag ... ios-XI.pdf and I don't believe we will be going to TLS anytime soon. So we are basically just using the default port of 389 with no encryption.
--Berto
Re: LDAP / Active Directory Integration Configuration
Posted: Thu Feb 11, 2016 11:22 am
by rkennedy
Hmm.
When you try to import users, what is the error you receive?
To clarify - is the DNS hostname.domain-name.com resolvable from the Nagios machine?
Re: LDAP / Active Directory Integration Configuration
Posted: Thu Feb 11, 2016 12:00 pm
by Berto
I have attached a screenshot of the error I received. Yes it is resolvable from the Nagios server.
[nagios-server]:(1028/0)-$ telnet ldapserver 389
Trying XXX.XXX.XX.X...
Connected to ldapserver.domain-name.com (XXX.XXX.XX.X).
Escape character is '^]'.
I can also do a simple ldapsearch from the Nagios Server
[nagios-server]:(1033/0)-$ ldapsearch -h ldap-server -x -b "uid=user-name,ou=People,dc=domain,dc=name,dc=com"
# extended LDIF
#
# LDAPv3
# base <uid=user-name,ou=People,dc=domain,dc=name,dc=com> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#
# user-name, People, domain-name
dn: uid=user-name,ou=People,dc=domain,dc=name,dc=com
loginShell: /bin/tcsh
shadowLastChange: 16265
SolarisAttrKeyValue: defaultpriv=basic,dtrace_proc,dtrace_user;type=normal
homeDirectory: /home/user-name
gecos: User Name
gidNumber: 102
uidNumber: 31989
cn: user-name
uid: user-name
objectClass: shadowAccount
objectClass: posixAccount
objectClass: account
objectClass: top
objectClass: SolarisUserAttr
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
--Berto
Re: LDAP / Active Directory Integration Configuration
Posted: Thu Feb 11, 2016 5:45 pm
by hsmith
What happens if you try to use the IP instead of the hostname for the AD/LDAP server?
Edit: You're not using TLS.
Re: LDAP / Active Directory Integration Configuration
Posted: Mon Feb 15, 2016 9:43 am
by Berto
When using just the IP address of the server I still get the same error. Yes I was mistaken thinking our environment used TLS but my LDAP admin when trying to assist me in getting LDAP configured notified me that we don't use TLS.
--Berto
Re: LDAP / Active Directory Integration Configuration
Posted: Mon Feb 15, 2016 4:58 pm
by ssax
Let's move this into a ticket so that we can get a remote session setup, please send an email to
[email protected] with a descriptive subject and a detailed body with a link back to this thread.
Thank you
Re: LDAP / Active Directory Integration Configuration
Posted: Wed Feb 17, 2016 2:35 pm
by ssax
Locking and will continue in the ticket.
Thank you