LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

Up to Discussions in Red Hat

1 2 Previous Next 13558 Views 16 Replies Latest reply: Sep 8, 2011 8:03 AM by mcorvalan

netmgmt

2 posts since
Jun 28, 2010

Currently Being Moderated

Jun 28, 2010 7:30 AM

Hi All,

I am trying to configure, the python LDAP plugins for zope as per the docs/DOC-2510 doco. We want to be able to intergrate zenoss into our active directory infrastructure.

I have Centos 5 and Zenoss 2.5.2 RPM build, i have tried to install different versions of LDAPUsersfolder / LDAPMultiplugins. All to no avail is there anyway i ca troubleshoot this problem?

i also have the newest RPM version of python installed.

Any help would be appreciated,

Regards,

Nick

Like (0)

JackBauer
31 posts since
Apr 29, 2010

Currently Being Moderated

1. Sep 9, 2010 9:06 AM (in response to netmgmt)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

Did you ever get any feedback or response? I'm looking at trying to do the same thing.

Report Abuse

Like (0)
netmgmt
2 posts since
Jun 28, 2010

Currently Being Moderated

2. Nov 15, 2010 12:53 AM (in response to JackBauer)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

nope nothing man. pretty much feels like you need the enterprise version if you want AD intergration.

Report Abuse

Like (0)
James Stewart
91 posts since
Dec 1, 2010

Currently Being Moderated

3. Mar 10, 2011 10:04 PM (in response to netmgmt)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

I'm not sure if it's any help or not, but I just followed this guide and AD authentication worked for me first go:

docs/DOC-5446

I think the only tricky part is getting the various DNs right. Other than that, just follow the guide!

Report Abuse

Like (0)
Andrea Consadori
863 posts since
Feb 11, 2008

Currently Being Moderated

4. Mar 24, 2011 8:32 AM (in response to netmgmt)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

it's not only an enterprise feature

docs/DOC-2510

but i still have problem to enable it on centos 5.5 64bit and zenoss 3.1.x ..

no error but unable to add this plugin "ActiveDirectory Multi Plugin" (it's not showed)..

any hints?

Report Abuse

Like (0)
James Stewart
91 posts since
Dec 1, 2010

Currently Being Moderated

5. Mar 24, 2011 5:39 PM (in response to Andrea Consadori)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

I've got Zenoss 3.1 running on RHEL 5.5 64bit.

As per the instructions I just went to http://zenoss_server:8080/zport/acl_users/manage, selected ActiveDirectory Multi Plugin from the drop-down menu in the top-right and clicked "Add":

Do you have the option available?

Report Abuse

Like (0)
Andrea Consadori
863 posts since
Feb 11, 2008

Currently Being Moderated

6. Mar 24, 2011 6:32 PM (in response to James Stewart)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

this is my issue... even if i followed the guide and i download the ldap plugin

[zenoss@ipmonitoring Products]$ pwd
/opt/zenoss/Products
[zenoss@ipmonitoring Products]$ ls | grep LDA
LDAPMultiPlugins
LDAPUserFolder
[zenoss@ipmonitoring LDAPMultiPlugins]$ ls -la
totale 116
drwxr-xr-x 5 zenoss zenoss 4096 24 mar 13:01 .
drwxr-xr-x 21 zenoss zenoss 4096 24 mar 13:00 ..
-rw-r--r-- 1 zenoss zenoss 17893 19 lug 2008 ActiveDirectoryMultiPlugin.py
-rw-r--r-- 1 zenoss zenoss 1799 19 lug 2008 CHANGES.txt
-rw-r--r-- 1 zenoss zenoss   461 19 lug 2008 COPYRIGHT.txt
-rw-r--r-- 1 zenoss zenoss   168 19 lug 2008 DEPENDENCIES.txt
drwxr-xr-x 2 zenoss zenoss 4096 19 lug 2008 dtml
-rw-r--r-- 1 zenoss zenoss 6078 19 lug 2008 HISTORY.txt
-rw-r--r-- 1 zenoss zenoss 1937 19 lug 2008 __init__.py
-rw-r--r-- 1 zenoss zenoss 1270 24 mar 13:01 __init__.pyc
-rw-r--r-- 1 zenoss zenoss 1036 19 lug 2008 INSTALL.txt
-rw-r--r-- 1 zenoss zenoss 12225 19 lug 2008 LDAPMultiPlugin.py
-rw-r--r-- 1 zenoss zenoss 8104 24 mar 13:01 LDAPMultiPlugin.pyc
-rw-r--r-- 1 zenoss zenoss 5871 19 lug 2008 LDAPPluginBase.py
-rw-r--r-- 1 zenoss zenoss 2142 19 lug 2008 LICENSE.txt
-rw-r--r-- 1 zenoss zenoss 2308 19 lug 2008 README.txt
drwxr-xr-x 2 zenoss zenoss 4096 19 lug 2008 tests
-rw-r--r-- 1 zenoss zenoss     4 19 lug 2008 VERSION.txt
drwxr-xr-x 2 zenoss zenoss 4096 19 lug 2008 www
and the same for other plugin but under zope
and
[root@ipmonitoring ~]# rpm -qa |grep python-ldap
python-ldap-2.2.0-2.1

this is the version i downloaded
LDAPMultiPlugins-1.7.tgz     LDAPUserFolder-2.12.tgz

Report Abuse

Like (0)
James Stewart
91 posts since
Dec 1, 2010

Currently Being Moderated

7. Mar 24, 2011 6:38 PM (in response to Andrea Consadori)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

Looking thru my bash history here's how I got the plugins:

>elinks http://www.dataflake.org/software/ldapuserfolder/ldapuserfolder_2.12/LDAPUserFolder-2.12.tgz/download
>elinks http://www.dataflake.org/software/ldapmultiplugins/ldapmultiplugins_1.7/LDAPMultiPlugins-1.7.tgz/download
>tar -xzvf LDAPMultiPlugins-1.7.tgz -C $ZENHOME/Products
>tar -xzvf LDAPUserFolder-2.12.tgz -C $ZENHOME/Products

It does look like you have them in the right place though. I assume you restarted Zope with

>zopectl restart

?

Report Abuse

Like (0)
Andrea Consadori
863 posts since
Feb 11, 2008

Currently Being Moderated

8. Mar 24, 2011 6:41 PM (in response to James Stewart)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

yes i've restarted zope and to be sure i restart zenoss service and all the server but nothing change... very strange... maybe a lib path error?

Report Abuse

Like (0)
Andrea Consadori
863 posts since
Feb 11, 2008

Currently Being Moderated

9. Mar 24, 2011 6:42 PM (in response to Andrea Consadori)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

but zenoss user bashrc is ok

[zenoss@ipmonitoring LDAPUserFolder]$ cat /home/zenoss/.bashrc
# .bashrc
# Source global definitions
if [ -f /etc/bashrc ]; then
. /etc/bashrc
fi
# User specific aliases and functions
export ZENHOME="/opt/zenoss"
export INSTANCE_HOME="/opt/zenoss"
export PATH="${ZENHOME}/bin:${PATH}"
export PYTHONPATH="/opt/zenoss/lib/python"
export LD_LIBRARY_PATH="/opt/zenoss/lib"

Report Abuse

Like (0)
Andrea Consadori
863 posts since
Feb 11, 2008

Currently Being Moderated

10. Mar 24, 2011 6:51 PM (in response to Andrea Consadori)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

found the issue under event.log

2011-03-24T23:49:57 ERROR Application Couldn't install LDAPUserFolder
Traceback (most recent call last):
File "/opt/zenoss/lib/python/OFS/Application.py", line 646, in install_product
    global_dict, global_dict, silly)
File "/opt/zenoss/Products/LDAPUserFolder/__init__.py", line 20, in <module>
    from Products.LDAPUserFolder.LDAPUserFolder import LDAPUserFolder
File "/opt/zenoss/Products/LDAPUserFolder/LDAPUserFolder.py", line 42, in <module>
    from Products.LDAPUserFolder.LDAPDelegate import filter_format
File "/opt/zenoss/Products/LDAPUserFolder/LDAPDelegate.py", line 19, in <module>
    import ldap
ImportError: No module named ldap

Report Abuse

Like (0)
James Stewart
91 posts since
Dec 1, 2010

Currently Being Moderated

11. Mar 24, 2011 6:56 PM (in response to Andrea Consadori)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

Ah yes, that'll do it...:-)

Installing python-ldap is mentioned in this guide, which I think I tried following first: docs/DOC-2510

But I eventually switched to the other guide as it made more sense.

Glad you finally sorted it out!

Report Abuse

Like (0)
Andrea Consadori
863 posts since
Feb 11, 2008

Currently Being Moderated

12. Mar 24, 2011 6:59 PM (in response to James Stewart)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

python ldap is just installed, is something else...

[root@ipmonitoring tmp]# python -V
Python 2.4.3
[root@ipmonitoring tmp]# su zenoss
[zenoss@ipmonitoring tmp]$ python -V
Python 2.6.2

it's the same issue described here
message/55892#55892

Report Abuse

Like (0)
James Stewart
91 posts since
Dec 1, 2010

Currently Being Moderated

13. Mar 24, 2011 7:10 PM (in response to Andrea Consadori)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

Ah ok, I think I know what your problem is.

Running yum install python-ldap will only install the python-ldap module for the server's default python install, (the 2.4 one). So the Zenoss python 2.6 environment still does not have python-ldap.

I think I had previously downloaded python-ldap and installed it in the zenoss environment for a separate project, which is why it "just worked" for me. So as the zenoss user you need to do something like:

>elinks http://pypi.python.org/packages/source/p/python-ldap/python-ldap-2.3.13.tar.gz
>tar -xzvf python-ldap-2.3.13.tar.gz
>cd python-ldap-2.3.13
>python setup.py install

There is also some discussion on linking the 2.4 library here, if you would rather do it that way:

message/53512

Report Abuse

Like (0)
mcorvalan
82 posts since
Aug 25, 2010

Currently Being Moderated

14. Sep 7, 2011 9:07 AM (in response to James Stewart)
Re: LDAP / Active Directory Authentication with Zenoss 2.5.2 and Centos 5

Hi James:
I wanna know how to do the same thing that you did!!!..
Because I need to install the Ldap plugin to connect to my Ldap data base with the Zenoss (zope db).
I can see that you have the same arquitecture like me, but I tried alot of things about how to install but I couldn't do it yet.
Since now thank alot.

Report Abuse

Like (0)