ldap

问题 I'm a newbie at Kubernetes and Helm, trying to customise stable/grafana Helm chart (https://github.com/helm/charts/tree/master/stable/grafana) with my own LDAP. What's the difference between auth.ldap part of grafana.ini and ldap section of chart's values.yaml file? How can I configure LDAP host address and credentials? 回答1: To enable LDAP configuration on Grafana. You need to update both parts. In values.yaml, there are two sections of grafana.ini and ldap . To enable LDAP you need to update

问题 i am trying to get the roles from a user in our ldap system. First of all, my ldap user entry and role entry: @Data @Entry(objectClasses = {"inetOrgPerson", "top"}, base = "ou=people" public class LdapUserEntry { @Id private Name id; @DnAttribute(value = "uid") private String username; @Attribute(name = "cn") private String cn; @Attribute(name = "userPassword") private String password; @DnAttribute(value = "ou") @Transient private String group; } Role Entry class: @Data @Entry(objectClasses =

问题 I have a SID string (e.g., "S-1-5-21-500000003-1000000000-1000000003-1001") of a user on a shared Windows server, and I need to get the related username. I suppose that this may be achieved by: 1) Turning the SID string into byte array. 2) Using a suitable ldpa query to get the related username. But I failed to find exact and reliable instructions of how to do it (this way or another). I'll appreciate any useful guide, especially if it comes with demo Python (ldap3) code. Thanks! 回答1: You

问题 I'm having trouble verifying the correct behavior of my software. Here are the steps I am performing to verify correct operation: I have sample code that uses openldap library and doing a start tls to a ldap server. I have set the global option for ca cert directory and tlx context for the first time. After that I did ldap int and ldap start tls to a server. This is succesful as expected. I did an ldap_unbind_s I deleted the CA cert that signed the ldap server's certificate from the ca cert

问题 I am using Airflow v1.9.0 and am trying to setup groups using LDAP authentication. I can get the basic LDAP authentication working that defaults all users to be superusers. However, I cannot get the AD to match against a specific group. For instance, I have user TommyLeeJones who I know is part of the user group MIB, but I can't get airflow to match this user against this group. In my airflow.cfg file, I have set: [webserver] authenticate = True auth_backend = airflow.contrib.auth.backends

问题 I am using Airflow v1.9.0 and am trying to setup groups using LDAP authentication. I can get the basic LDAP authentication working that defaults all users to be superusers. However, I cannot get the AD to match against a specific group. For instance, I have user TommyLeeJones who I know is part of the user group MIB, but I can't get airflow to match this user against this group. In my airflow.cfg file, I have set: [webserver] authenticate = True auth_backend = airflow.contrib.auth.backends

问题 we have a problem with Apache Directory Studio (Version: 2.0.0.v20200411-M15 and previous). When we connect to an OpenLDAP instance we can't see the naming contexts of the Root DSE. We have the OpenLDAP configured as multi-master and the strange thing is that in one node we can see it and not in the other. Root DSE with missing entry screenshot Root DSE showing the entry screenshot When we try to get the info via ldapsearch, we can see the correct naming context for both nodes: ldapsearch -H

问题 We have an LDAP with a number of groups that follow this pattern: Acme-MyApp-ABC-Admin Acme-MyApp-ABC-Bottlewasher Acme-MyApp-ABC-Cook Acme-MyApp-DEF-Admin Acme-MyApp-DEF-Bottlewasher Acme-MyApp-DEF-Cook etc repeated many times. (&(objectClass=person)(memberOf=cn=Acme-MyApp-ABC-Admin,ou=Groups,dc=acme,dc=com)) correctly returns members of the Acme-MyApp-ABC-Admin group. We'd like to find members of all of the Admin groups. (&(objectClass=person)(memberOf=cn=*-Admin,ou=Groups,dc=acme,dc=com))

问题 I am using spring-ldap-core plugin in my Sprint boot application. Basically, the LDAPTemplate - http://docs.spring.io/spring-ldap/docs/current/apidocs/org/springframework/ldap/core/LdapTemplate.html I basically want to convert the xml configuration below into java using Spring LDAP API and want to avoid using spring security. The xml configuration that I want to convert is - <ldap-server id="ldapServer" url="ldap://ad.company.com:389" manager-dn="CN=serviceaccount,OU=Service Accounts,DC=ad,DC

问题 Does using 1.2.840.113556.1.4.1941 terminate gracefully if there are cyclic dependencies in a dl (a -> b -> a situation) 回答1: The LDAP_MATCHING_RULE_IN_CHAIN OID handles circular dependencies just fine. It won't choke on them. For example, I recommended using this when determining if a user is a member of a group. Consider if you have this setup: Group A Group B Group B User 1 Group A And you want to know if User 1 is a member of Group A . You would set the search base to Group A , and use