Re: LDAP with Multiple Domains

Wed, 27 Apr 2016 09:24:51 -0700

I am not aware of any unique settings for multiple domains on the same domain controller, but I suspect that as long as the configurations are unique, it would work.

For reference, our configuration looks like this:

  ## LDAP settings
  ldap:
    enabled: true
    servers:
      main:
        label: 'DOMAINA'
        host: 'dca.domaina.ddd.root'
        port: 389
        uid: 'sAMAccountName'
        method: 'plain'
        bind_dn: 'notarealu...@domaina.ddd.root'
        password: 'notARealPassword'
        active_directory: true
        allow_username_or_email_login: true
        base: 'OU=ORG,DC=domaina,DC=ddd,DC=root'
        user_filter: ''

      domainb: # 'main' is the GitLab 'provider ID' of this LDAP server
        label: 'DOMAINB'
        host: 'dcb.domainb.ddd.root'
        port: 389
        uid: 'sAMAccountName'
        method: 'plain'
        bind_dn: 'notarealu...@domainb.ddd.root'
        password: 'notARealPassword'
        active_directory: true
        allow_username_or_email_login: true
        base: 'OU=Users,OU=DOMAINB,DC=domainb,DC=ddd,DC=root'
        user_filter: ''

      new: # 'main' is the GitLab 'provider ID' of this LDAP server
        label: 'new'
        host: 'newdc.new.ddd.root'
        port: 389
        uid: 'sAMAccountName'
        method: 'plain'
        bind_dn: 'notarealu...@new.ddd.root'
        password: 'notARealPassword'
        active_directory: true
        allow_username_or_email_login: true
        base: 'DC=new,DC=ddd,DC=root' 
        user_filter: ''

I am a software developer, not an IT expert.  These configuration items were provided by our IT staff.  Once they provided the details, I used ldapsearch on the Gitlab server to confirm the configuration.

Hope this helps.

Regards,
Rick
-----Original Message-----
From: Dioram Nepangue
Sent: Apr 27, 2016 9:29 AM
To: GitLab
Cc: dnepan...@gmail.com
Subject: Re: LDAP with Multiple Domains

May I know how did you come up with the ldap settings? I have 3 domains on one ldapserver and i want those 3 domains to be able to authenticate to gitlab using ldap. My current settings for domainA domain is like this:




  ldap:
    enabled: true
    servers:
      main:
        label: 'LDAP Auth'


        host: '192.168.10.5'
        port: 636
        uid: 'uid'
        method: 'ssl'
        bind_dn: 'CN=Manager,dc=domainA,dc=com'
        password: 'secret'
        allow_username_or_email_login: false
        base: 'dc=domainA,dc=com'
        user_filter: ' '



Now, I am trying to add domainB, and domainC to this setup. How do I add the those dc's?  What bind_dn: and base: to use?


Thanks,


On Tuesday, April 26, 2016 at 6:50:29 PM UTC+8, Rick Bywater wrote:
Yes. During one of our upgrades, we successfully implemented it. We currently have four configured domains.

Thanks.
Rick

On April 26, 2016 4:20:43 AM EDT, Dioram Nepangue <dnep...@gmail.com> wrote:
Hey Rick, 


Have you implemented the multiple domain in Gitlab?


Thanks.


Thanks.

On Friday, July 26, 2013 at 11:35:59 PM UTC+8, Rick Bywater wrote:
I have been working to get my Gitlab authenticating via LDAP within my company.  After a bit of head scratching, I got my domain to work.  However, the company has several domains which we would like Gitlab to service.  I have not seen any discussion of this.  Is there a mechanism for adding multiple domains to the LDAP configuration?

Thanks,
Rick


--
Sent from my Android device with K-9 Mail. Please excuse my brevity.

--
You received this message because you are subscribed to a topic in the Google Groups "GitLab" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/gitlabhq/_TGMVY11WhA/unsubscribe.
To unsubscribe from this group and all its topics, send an email to gitlabhq+unsubscr...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/gitlabhq/406f1f20-2d35-4a1e-b64f-4c855e19f8da%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.










-- 

You received this message because you are subscribed to the Google Groups "GitLab" group.

To unsubscribe from this group and stop receiving emails from it, send an email to gitlabhq+unsubscr...@googlegroups.com.

To view this discussion on the web visit https://groups.google.com/d/msgid/gitlabhq/25890031.1461774253380.JavaMail.wam%40mswamui-thinleaf.atl.sa.earthlink.net.

For more options, visit https://groups.google.com/d/optout.






















					Reply via email to