Spinnaker LDAP с использованием Halyard

Question

Spinnaker LDAP с использованием Halyard

У меня проблема с настройкой аутентификации spinnaker ldap в Windo ws Active Directory.

gate-local.yml -> ldap: managerDn: cn=svc_spinnaker_auth,ou= СЧЕТА ОБСЛУЖИВАНИЯ, ou = СОСТОЯНИЕ ДОМЕНА,dc=testdomain,dc=com managerPassword: XXXX groupSearchBase: cn=ADM_Spinnaker_Auth_Global,ou=SECU, GRO = ou=ELEVATED ACCESS,ou=DOMAIN ESTATE,dc=testdomain,dc=com

Команда halyard -> hal config security authn ldap edit --url=ldap://10.34.XXX.XX:XXX/DC= домен,DC=com --user-search-base="CN=ADM_Spinnaker_Auth_Global,OU=SECURITY,OU= ГРУППЫ, OU = ЛЕГКИЙ ДОСТУП, OU = ДОМЕННАЯ СОСТОЯНИЕ, DC = домен,DC=com" --user-search-filter="(sAMAccOUntName={0})"

0

active-directory ldap spinnaker spinnaker-halyard

Источник

user10272862 04 сен '18 в 11:22

0 ответов

Другие вопросы по тегам active-directory ldap spinnaker spinnaker-halyard

user9503516 17 июн '19 в 20:58 2019-06-17 20:58 · Answer 1 · 2019-06-17 20:58

I've setup my user search filter to be below:

(&(objectClass=person)(sAMAccountName={0})(instanceType=4))

I had tried what you did before but it didn't work exactly that way. Above worked better. I also had to put my entire config in a gate-local.yml file. Adding it through hal config was not copying my managerDN and managerPassword to my spinnaker deployment even though it was in my config file.

0

Источник

user9503516 17 июн '19 в 20:58