Hello all,

We're trying to move our Observium Installation from Radius Authentication to LDAP Authentication.

We get an answer from Observium to our LDAP Server, but sadly we can't login in Observium.

Here are the LDAP values in our config.php:

$config['auth_mechanism'] = "ldap";
$config['auth_ldap_version'] = 3;                     // LDAP client version (2 or 3)
$config['auth_ldap_referrals'] = 0;                   // Follow LDAP referrals
$config['auth_ldap_server'] = "ourserver.de";  // LDAP server name, or array of LDAP server names tried in order.
$config['auth_ldap_port']   = 389;                    // LDAP server port
$config['auth_ldap_starttls'] = 'no';                 // Use STARTTLS ('no', 'optional' or 'require')
$config['auth_ldap_recursive'] = TRUE;                      // Active Directory recursive lookup for nested groups
$config['auth_ldap_recursive_maxdepth'] = 5;          // Max depth for recursive lookup
$config['auth_ldap_prefix'] = "uid=";
$config['auth_ldap_suffix'] = ",ou=users,dc=ourdc";
$config['auth_ldap_group']  = array("cn=ldapWeb,ou=group,dc=ourdc");
$config['auth_ldap_groupbase'] = "ou=groups,dc=ourdc";

$config['auth_ldap_binddn'] = "uid=webadmin,ou=users,dc=ourdc"; // Initial LDAP bind dn and password, leave empty for anonymous bind
$config['auth_ldap_bindpw'] = "ourpassword";
$config['auth_ldap_bindanonymous'] = FALSE;

$config['auth_ldap_attr']['uid'] = "uid";             // LDAP attribute containing the user login name 
$config['auth_ldap_attr']['uidNumber'] = "uidNumber"; // LDAP attribute containing the numeric user ID 
$config['auth_ldap_attr']['cn'] = "cn";               // LDAP attribute containing the user's full name
$config['auth_ldap_attr']['dn'] = "dn";               // LDAP attribute containing the user's DN

$config['auth_ldap_objectclass'] = "posixAccount";    // objectClass to filter out valid users, use * for all objects under ldap_suffix tree

$config['auth_ldap_groupmembertype'] = "nodn";        // Available membertypes: 'nodn' (default, uses $username);
                                                      // 'fulldn' ($config['auth_ldap_prefix'] . $username . $config['auth_ldap_suffix'])
$config['auth_ldap_groupmemberattr'] = "memberUid";   // Use your unique attribute for username, example "uniqueMember".

Can someone tell us what are we doing wrong here? 
Is there any way to activate a ldap debug in Observium?

I'll appreciate your help.

Regards,
Ximena.

---
Ximena E. Cardinali | Linux SysAdmin