We don't actually query LDAP anymore except when logging in ;-)
On 10/26/2016 04:47 PM, Adam Armstrong wrote:
And good luck waiting for LDAP timeout on every graph load :DDD
adam.
Sent from Mailbird http://www.getmailbird.com/?utm_source=Mailbird&utm_medium=email&utm_campaign=sent-from-mailbird
On 26/10/2016 15:46:55, Tom Laermans tom.laermans@powersource.cx wrote:
Youssef,
This is planned, but currently not possible.
Tom
On 10/26/2016 04:42 PM, Youssef BENGELLOUN - ZAHR wrote:
Hello,
Thanks for this feedback, even though that’s not exactly what we are trying to achieve.
Aim is simple : If LDAP server isn’t reachable anymore, fallback to local DB for authentication (temporarily).
Maybe someone else could chim in for this one ?
Thanks.
From: observium observium-bounces@observium.org on behalf of Stef Renders <stef.renders@cronos.be mailto:stef.renders@cronos.be> Reply-To: Observium Network Observation System <observium@observium.org mailto:observium@observium.org> Date: lundi 17 octobre 2016 10:34 To: Observium Network Observation System <observium@observium.org mailto:observium@observium.org> Cc: Zurab TIELIDZE z.TIELIDZE@prodware-group.com Subject: Re: [Observium] Fallback authentication
Dear
We use different authentication types depending on which fqdn you connect to the server (in config.php);
switch($_SERVER['SERVER_NAME']){
case 'observium.x.x':
// Domain specific settings likeauthentication or views
break;
case 'observium-guests.y.y':
// Domain specific settings like authentication or views
break;
default:
// optional default settings
}
For example, our staff is using LDAP; our customer views use local credentials.
Staff would logon at Observium.x.x; others at Observium.y.y;
You could add more, however you have to make sure the user ID’s don’t overlap since they are used in the database for user specific settings/authentication tokens. I don’t know how this is covered by Observium or what decides the user ID for LDAP users.
LDAP users get identifiers higher than 2.000 in our installation, so were are technically limited to create 2000 users. Unless we change the auto increment on local users in the database to something like 30000.
Kind regards
*Youssef BENGELLOUN - ZAHR* - Consultant Expert Prodware France T : +33 979 999 000 - F : +33 988 814 001 - ybzahr@prodware.fr
mailto:ybzahr@prodware.fr
Web : prodware.fr http://www.prodware.fr http://twitter.com/Prodware/ http://www.facebook.com/Prodware/ https://www.linkedin.com/company/prodwarefrance https://www.youtube.com/c/ProdwareFrance http://www.viadeo.com/fr/company/prodware http://www.prodware.fr/social-network/
*From:*observium [mailto:observium-bounces@observium.org] *On Behalf Of *Youssef BENGELLOUN - ZAHR *Sent:* maandag 17 oktober 2016 10:19 *To:* Observium Network Observation System observium@observium.org *Cc:* Zurab TIELIDZE z.TIELIDZE@prodware-group.com *Subject:* [Observium] Fallback authentication
Dear Observium Community,
We have successfully configured central authentication via LDAP. We are trying to secure that by configuring fallback authentication method to local DB.
Do you know if it is possible to do that ?
Thank you.
*Youssef BENGELLOUN - ZAHR*- Consultant Expert Prodware France T : +33 979 999 000 - F : +33 988 814 001 - ybzahr@prodware.fr mailto:ybzahr@prodware.fr
Web : prodware.fr http://www.prodware.fr
http://twitter.com/Prodware/ http://www.facebook.com/Prodware/ https://www.linkedin.com/company/prodwarefrance https://www.youtube.com/c/ProdwareFrance http://www.viadeo.com/fr/company/prodware http://www.prodware.fr/social-network/
observium mailing list observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium
observium mailing list observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium