Hey everyone;
Answers so far have been wonderful. I've been pouring through the archives trying to find a good example for LDAP Authentication, and I believe I have the authentication portion working correctly, however security permissions in Observium aren't working correctly.
If I provide the correct credentials, it lets me through but the main page has no content. If I provide incorrect credentials, it spits me back out to the login page.
The structure of the containers is correct, the AD Security Group 'Network Ops' is the group our Network Management team uses, so I want us to have full access (level 10), and is located in (Canonical name): hh.nku.edu/NKU/HH/Groups/Security/Network Ops
I've tried it with 'Domain Users' instead of 'Network Ops' but no dice there either. And yes, I have double-checked that my account is a member of the 'Network Ops' group, I didn't get fired today.
My level 7 and level 1 groups have been commented out just to try and simplify any issues.
My config.php (relevant portions) look like:
// Authentication Model #Required LDAP Settings $config['auth_mechanism'] = "ldap"; $config['auth_ldap_version'] = 3; $config['auth_ldap_server'] = "nkuserv1.hh.nku.edu"; $config['auth_ldap_port'] = 389; $config['auth_ldap_starttls'] = "false";
#User Account $config['auth_ldap_prefix'] = "cn="; $config['auth_ldap_suffix'] = ",OU=Faculty_Staff,OU=Users,OU=HH,OU=NKU,DC=hh,DC=nku,DC=edu";
#Required Group Membership $config['auth_ldap_group'] = "cn=Network Ops,OU=Security,OU=Groups,OU=HH,OU=NKU,dc=hh,dc=nku,dc=edu"; $config['auth_ldap_groupbase'] = "ou=Security,ou=Groups,ou=hh,ou=nku,dc=hh,dc=nku,dc=edu";
#Optional LDAP Settings $config['auth_ldap_groups']['Network Ops']['level'] = 10; #$config['auth_ldap_groups']['Domain Admins']['level'] = 7; #$config['auth_ldap_groups']['Lab Admins']['level'] = 1;
So, if anyone has any ideas or can help with this, it'd be greatly appreciated.