[racktables-users] Re: Ldap Authentication

On Thu, 13 Mar 2008 16:27:57 -0400
Jason Ledford <jledford@xxxxxxxxxxxx> wrote:

> I am using the admin account, it is currently the only one I have
> created since I just set this up, so I don't know if other users are
> working or not.
> 
> So from what you are saying is I need to add user xyz to racktables
> and I should be able to authenticate using ldap with user xyz?

Yes, exactly. The admin account is treated somewhat special.

> I am not sure what you mean by reference implementation.  I am
> authenticating against active directory and in apache using mod_ldap
> and I can get that working no problem, so if I could disable
> racktable auth and have it wide open and the default user see's
> everything, I could protect it with apache.

Let's get back to it later.

> I just tried to add a user in racktables and then authenticate using
> ldap info and it didn't work.  In secret.php for server name, I only
> have the server name (fqdn), and for domain and I have the short
> version of the domain.

The complete procedure is:
1. Create an account (Configuration->Accounts). It will have a blue
sign near it, this means "activate". Press it.
2. Grant permissions (Confguration->Permissions). Try the simplest way
of granting this user all permissions: at the bottom row select
the username you created, then "ANY", then "%", then "yes". Press the
green ambulance-like sign.
3. Switch to LDAP: Configuration -> User interface; User authentication
source = "ldap".

Now the user should be able logging in with his LDAP password.

Having written the quest solution above, I just realised, how tricky
this could seem to be. Documenting already implemented features is
becoming another job itself... Ah, yes, if anyone by a chance has a
better artwork for the icons, just send it ;)

-- 
    DO4-UANIC

Other related posts: