[racktables-users] Re: Ldap Authentication

• From: Jason Ledford <jledford@xxxxxxxxxxxx>
• To: "racktables-users@xxxxxxxxxxxxx" <racktables-users@xxxxxxxxxxxxx>
• Date: Thu, 13 Mar 2008 16:27:57 -0400

I am using the admin account, it is currently the only one I have created since 
I just set this up, so I don't know if other users are working or not.

So from what you are saying is I need to add user xyz to racktables and I 
should be able to authenticate using ldap with user xyz?

I am not sure what you mean by reference implementation.  I am authenticating 
against active directory and in apache using mod_ldap and I can get that 
working no problem, so if I could disable racktable auth and have it wide open 
and the default user see's everything, I could protect it with apache.

I just tried to add a user in racktables and then authenticate using ldap info 
and it didn't work.  In secret.php for server name, I only have the server name 
(fqdn), and for domain and I have the short version of the domain.

TIA for any help, and by the way, the server admin thinks this is a very cool 
tool.

-----Original Message-----
From: racktables-users-bounce@xxxxxxxxxxxxx 
[mailto:racktables-users-bounce@xxxxxxxxxxxxx] On Behalf Of Denis Ovsienko
Sent: Thursday, March 13, 2008 4:03 PM
To: racktables-users@xxxxxxxxxxxxx
Subject: [racktables-users] Re: Ldap Authentication

Hello.

> I am trying to use the ldap auth with racktables and its not working
> for me.  When I change auth type from database to ldap it doesn't
> seem to change anything.  I open a different browser and try to log
> in and it won't take any ldap auth but the db auth still works.  And

Are you sure the USER_AUTH_SRC option is set to "ldap"? This way local
DB password check shouldn't work, which isn't the case. The only
exception is administrator, which is always authenticated locally.

> I am using firefox and IE so I am not using the same session.  I
> would prefer apache auth so if I could disable racktables
> authentication all together that would work also.

There's a place to fit this feature, I guess. The accounts will still
have to be listed in DB, this can't be changed fast. Is there any
reference implementation, which could get not only username from
Apache, but group name as well?

> I changed the server name and domain in secret.php and it didn't seem
> to make a difference.


--
    DO4-UANIC

• Follow-Ups:
  • [racktables-users] Re: Ldap Authentication
    • From: Denis Ovsienko

• References:
  • [racktables-users] Ldap Authentication
    • From: Jason Ledford
  • [racktables-users] Re: Ldap Authentication
    • From: Denis Ovsienko

Other related posts:

• » [racktables-users] Ldap Authentication
• » [racktables-users] Re: Ldap Authentication
• » [racktables-users] Re: Ldap Authentication
• » [racktables-users] Re: Ldap Authentication
• » [racktables-users] Re: Ldap Authentication
• » [racktables-users] Re: Ldap Authentication

• » Related posts
• » Previous by Date
• » Next by Date
• » This Month's Archive
• » Main Archive Page

• » View list details
• » Manage your subscription