Multiple Domain support for LDAP/AD plugins
Posted: Thu Jan 16, 2014 5:53 pm
Hi Nagios Support,
Would it be possible to change the ldapauth php plugin to include settings for a bind user and bind password with :
<td>
<input type="password" size="10" name="bind_pw" id="bind_pw" value="'.htmlentities($bind_pw).'" class="textfield" /><br class="nobr" />
'.gettext('The Bind User Password to use for authenticating to and/or browsing the LDAP server.').'<br><br>
And then use a traditional lookup and verify with passed password the bind works.
This is because we have several geographic related domains in our AD forest, and so the current configuration will only allow for one type of domain, like DC=geo,DC=site,DC=com.
We also use different OU paths for our faceless or automated users, e.g. OU=facelessuser,OU=Managed Domains,DC=geo,DC=site,DC=com vs. OU=realperson,OU=People,Users,DC=geo,DC=site,DC=com .
Attached is a miserable attempt on changing nagiosxi/html/includes/components/ldapauth/ldapauth.inc.php to illustrate the idea
Would it be possible to change the ldapauth php plugin to include settings for a bind user and bind password with :
<td>
<input type="password" size="10" name="bind_pw" id="bind_pw" value="'.htmlentities($bind_pw).'" class="textfield" /><br class="nobr" />
'.gettext('The Bind User Password to use for authenticating to and/or browsing the LDAP server.').'<br><br>
And then use a traditional lookup and verify with passed password the bind works.
This is because we have several geographic related domains in our AD forest, and so the current configuration will only allow for one type of domain, like DC=geo,DC=site,DC=com.
We also use different OU paths for our faceless or automated users, e.g. OU=facelessuser,OU=Managed Domains,DC=geo,DC=site,DC=com vs. OU=realperson,OU=People,Users,DC=geo,DC=site,DC=com .
Attached is a miserable attempt on changing nagiosxi/html/includes/components/ldapauth/ldapauth.inc.php to illustrate the idea