LDAP Authentication in 4.2

Archived community.zenoss.org | full text search

Skip navigation

Up to Discussions in zenoss-users

3072 Views 3 Replies Latest reply: Sep 6, 2013 4:54 AM by thomas

zenoR

4 posts since
Jul 12, 2011

Currently Being Moderated

Sep 24, 2012 11:44 AM

Has LDAP authentication changed in zenoss 4.2? Are the following Docs still relevant: docs/DOC-2510

I'm looking to implement it sometime soon and if anyone has any advice or experience, please share.

Thank you!

Like (0)

kenhen93
100 posts since
Sep 27, 2011

Currently Being Moderated

1. Sep 24, 2012 3:35 PM (in response to zenoR)
Re: LDAP Authentication in 4.2

Yes those directions are still revelvant. I commented at the bottom of that post saying I was able to install ldap on x64 4.2 core. I actually tried newer packages but they require too many prereqs.

Report Abuse

Like (0)
harpermann
8 posts since
Aug 24, 2009

Currently Being Moderated

2. Aug 9, 2013 8:50 PM (in response to kenhen93)
Re: LDAP Authentication in 4.2

This worked with CentOS 6.4 with the latest core-autodeploy.sh (zenoss-4.2.4-1859.el6.x86_64)

zenoss> easy_install python-ldap
zenoss> easy_install products.ldapmultiplugins
zenoss> easy_install products.ldapuserfolder
zenoss> zopectl restart

Then did this: http://blogs.oregonstate.edu/sig/2013/03/28/enabling-ldap-authentication-in-zenoss-core-4-2-and-centos-6/
My config needed cn for the user name

message/30124#30124 got the groups working but I basically just mapped an LDAP group to the zenoss Manager group from the groups tab.

Nice stuff!

Report Abuse

Like (0)
thomas
127 posts since
Apr 21, 2008

Currently Being Moderated

3. Sep 6, 2013 4:54 AM (in response to zenoR)
Re: LDAP Authentication in 4.2

I have followed the guide on http://blogs.oregonstate.edu/sig/2013/03/28/enabling-ldap-authentication-in-zenoss-core-4-2-and-centos-6/ as well (username is uid) and it is working for me, I have used the following versions:

Products.LDAPMultiPlugins-1.14.tar.gz
Products.LDAPUserFolder-2.26.tar.gz
python-ldap-2.4.13.tar.gz

However there is a bug in Products.LDAPUserFolder-2.26.tar.gz, I have just made a bugreport here:

https://bugs.launchpad.net/ldapuserfolder/+bug/1221624

I'm not sure what exact impact the bug has, but I was noticing some WARNINGS when I restarted zenoss, and I don't like that.

Otherwise it is pretty simple, as long as you know all details of your ldap-setup :-)

If you are using ldaps (ldap over ssl) then remember that the certificate must be trusted, I had to follow this procedure: http://www.bradchen.com/blog/2012/08/openldap-tls-issue because our ldap-server has a self-signed certificate.

I'm not using groups in LDAP and my username is UID.

Report Abuse

Like (0)

Go to original post

Legend

Correct Answers - 4 points
Helpful Answers - 2 points

Sep 24, 2012 11:44 AM

LDAP Authentication in 4.2

Actions

More Like This

Legend