[ 
https://issues.apache.org/jira/browse/KNOX-536?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15713930#comment-15713930
 ] 

Eric Yang commented on KNOX-536:
--------------------------------

[~comomore] For nested OU, I think you might want to add parallel OU to 
ou=processing (i.e. ou=processing2) to show that you can bridge the queries 
using multiple declaration in sssd.conf.

{code}
[domain/default]
access_provider = ldap
autofs_provider = ldap
chpass_provider = ldap
cache_credentials = True
ldap_schema = rfc2307bis
 
id_provider = ldap
auth_provider = ldap
ldap_uri = ldap://<ldap_host>/
 
ldap_tls_cacertdir = /etc/openldap/certs
ldap_id_use_start_tls = True
 
# default bind dn
ldap_default_bind_dn = cn=admin,dc=apache,dc=org
ldap_default_authtok_type = password
ldap_default_authtok = my_pasword
ldap_search_base = ou=processing,ou=data,ou=groups,dc=apache,dc=org

[domain/ou2]
access_provider = ldap
autofs_provider = ldap
chpass_provider = ldap
cache_credentials = True
ldap_schema = rfc2307bis
 
id_provider = ldap
auth_provider = ldap
ldap_uri = ldap://<ldap_host>/
 
ldap_tls_cacertdir = /etc/openldap/certs
ldap_id_use_start_tls = True
 
# ou2 bind dn
ldap_default_bind_dn = cn=admin,dc=apache,dc=org
ldap_default_authtok_type = password
ldap_default_authtok = my_pasword
ldap_search_base = ou=processing2,ou=data,ou=groups,dc=apache,dc=org

{code}

> LDAP authentication against nested OU
> -------------------------------------
>
>                 Key: KNOX-536
>                 URL: https://issues.apache.org/jira/browse/KNOX-536
>             Project: Apache Knox
>          Issue Type: Bug
>          Components: Server
>    Affects Versions: 0.5.0, 0.6.0, 0.7.0
>         Environment: All
>            Reporter: Jeffrey E  Rodriguez
>             Fix For: 0.11.0
>
>   Original Estimate: 168h
>  Remaining Estimate: 168h
>
> Knox Gateway provides HTTP BASIC authentication against an LDAP user 
> directory. It currently supports only a single Organizational Unit (OU) and 
> does not support nested OUs.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to