Care to share your ldap config? I am attaching to an AD environment and
having no luck.
Thanks,
Randy
app[:configuration] = {
:scalr => {
# Tells Scalr to use LDAP for authentication
:auth_mode => 'LDAP',
:connections => {
:ldap => {
# Tells Scalr what LDAP server to connect to
:bind_type => 'simple',
:host => 'ldaps://ad.ddd.ccc.com:3269',
:port => '3269',
# Tells Scalr where to look at for users and groups
:base_dn => 'CN=USER,OU=xxxx,DC=ad,DC=xxx,DC=com',
:base_dn_groups => 'OU=xxx,OU=Sites,DC=ad,DC=xxx,DC=com',
:user => 'cn="xx,ou=xx,ou=xxx,ou=xxx,dc=ad,dc=xxx,dc=com"',
:password => '*****',
# Tells Scalr what attributes to look at
:username_attribute => 'sAMAccountName',
:groupname_attribute => 'memberOf',
# Tells Scalr how group membership is represented
:group_member_attribute_type => 'memberUid',
# Tells Scalr to use filters to speed up queries
:filter => {
:users => '(&(objectClass=posixAccount))',
:groups => '(&(objectClass=groupOfNames))',
},
# Uncomment for debug output if you can't login
:debug => 1,
}
}
On Friday, January 15, 2016 at 3:27:04 PM UTC-6, Jay Farschman wrote:
>
> Afternoon,
>
> I setup LDAP access against our MS Active Directory (AD) today and found
> that once you understand how all the parts work, it's really very well
> done. However, I have a question about the workflow
>
> Scalr does not allow me to do any operations on an LDAP user until that
> user first logs in. After they login, I can assign them to teams and apply
> the proper ACLs, but not before then.
>
> How have others handled this? For now I'm personally inviting a limited
> number of users and I can work with them all personally, but if there a
> better, more automated way?
>
--
You received this message because you are subscribed to the Google Groups
"scalr-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
