Add graylog to ldap issue

How to add graylog to freeipa ldap server?

If you want to authenticate graylog users through FreeIPA, setup LDAP in section System - Authentication / LDAP
Try to setup this parameters:

Server address: ldap://ipa.demo1.freeipa.org or better ldaps://
System username: uid=admin,cn=users,cn=accounts,dc=demo1,dc=freeipa,dc=org
Search Base DN: dc=demo1,dc=freeipa,dc=org
User search pattern:  (&(objectclass=*)(uid={0}))
Display Name attribute: displayname

THanks for replay.
its,working. Thank you

ldap working fine. but users has no permission at all. is there any document to which permission and how it’s working in freeipa?

You need you either assign role manually for users, or using LDAP group mapping. You can use LDAP group mapping to map group to Graylog role.

https://docs.graylog.org/en/3.3/pages/users_and_roles/external_auth.html#group-mapping
https://docs.graylog.org/en/3.3/pages/users_and_roles/roles.html#roles

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.