Hi

 

I need advice on how to authenticate my LDAP server (Windows Server 2019) with my Observium client (v22.4.11952) which runs on Ubuntu v20.04 Desktop.  

 

1. I’ve configured LDAPs certificate in my LDAP server as an .pfx file. How do I allow Observium to read the certificate so as to get authenticated by my LDAP server?

 

2. I’ve configured LDAP settings in my Observium’s config.php file accordingly as advised & installed php module. However, Observium is still unable to authenticate via LDAP. LDAP query between Observium client (Ubuntu) and LDAP server (Windows) is working. So please advice on what additional steps is required on setting up LDAP on regards to both client & server side.

 

3. Attached is my config.php configuration.

 

// Authentication Model

$config['auth_mechanism'] = "ldap";    // default, other options: ldap, http-auth, please s>

$config['auth_ldap_binddn'] = "cn=Administrator,ou=acclivis,dc=domain01,dc=com";

$config['auth_ldap_bindpw'] = "xxxxxxxxxx";

$config['auth_ldap_attr']['uid'] = "sAMAccountName";

$config['auth_ldap_attr']['uidNumber'] = "objectSid";

$config['auth_ldap_attr']['cn'] = "name";

$config['auth_ldap_attr']['dn'] = "distinguishedName";

$config['auth_ldap_objectclass'] = "user";

$config['auth_ldap_version'] = 3;

$config['auth_ldap_server'] = "server01.domain01.com";

$config['auth_ldap_port'] = 636;

$config['auth_ldap_starttls'] = TRUE;

$config['auth_ldap_prefix'] = "cn=";

$config['auth_ldap_suffix'] = ",ou=acclivis,DC=domain01,DC=com";

$config['auth_ldap_group'] = array("cn=grouping,ou=acclivis,DC=domain01,DC=com");

$config['auth_ldap_groupbase'] = "cn=grouping,ou=acclivis,DC=domain01,DC=com";

$config['auth_ldap_groupmembertype'] = "nondn";

$config['auth_ldap_groupmemberattr'] = "member";

unset($config['auth_ldap_groups']);

$config['auth_ldap_groups']['cn=grouping,ou=acclivis,DC=domain01,DC=com']['level'] = 10;

 

Best Regards

Valerie Lim