Yes, you can. You can use different profile name and those setups can exist together, or you can you same name and the aaa-setup-tool will ask you if you want to override the existing one.
----- Anantha Raghava <[email protected]> wrote: > Thanks for quick response Ondra. > > Before I make another attempt to properly configure, can I re-execute > the ovirt aaa ldap setup again without disturbing the current setup? > Will that help me to correct the problem? > > -- > > Thanks & Regards, > > > Anantha Raghava > > eXza Technology Consulting & Services > > > Do not print this e-mail unless required. Save Paper & trees. > > On Wednesday 28 September 2016 01:23 PM, Ondra Machacek wrote: > > ----- Anantha Raghava <[email protected]> wrote: > >> Hello Ondra > >> > >> Please find the attached file. I have also attached the setup log file. > >> I find the errors & warnings there too. But I am unable to figure out > >> what really went wrong. > >> > >> One more thing, while setting aaa-ldap extension, since it threw error > >> on user DN, did not properly recognise, I used "anonymous", also did not > >> perform the Login Test. Are these the root cause? > > Yes, it is root cause. Active directory usually has anonymous bind > > disabled. You can enter UPN instead of DN, if you want. In your case it > > will be something like [email protected]. Please note that AD usually use CN > > attribute in DN, not uid attribute, that may be the problem in your DN. > >> -- > >> > >> Thanks & Regards, > >> > >> > >> Anantha Raghava > >> > >> eXza Technology Consulting & Services > >> > >> > >> > >> Do not print this e-mail unless required. Save Paper & trees. > >> > >> On Wednesday 28 September 2016 12:18 PM, Ondra Machacek wrote: > >>> On 09/28/2016 05:25 AM, Anantha Raghava wrote: > >>>> Hi, > >>>> > >>>> I am trying to integrate the oVirt Engine with Active Directory to > >>>> enable user logins. I installed the ovirt ldap extension and executed > >>>> the setup. The process completed successfully and the profile is visible > >>>> in engine log in page. > >>> Most probably it wasn't successful, because as you can see in > >>> screenshot there is no 'namespace', you should see there something, if > >>> configuration is correct. > >>> > >>> Can you please send output of the following command? > >>> > >>> $ ovirt-engine-extensions-tool --log-level=FINEST > >>> --log-file=/tmp/aaa.log aaa search --extension-name=domain-authz > >>> > >>> There should be some ERROR or WARN. > >>> > >>> Thanks. > >>> > >>>> Now, when I try to add the user and assign the roles, it is not allowing > >>>> me to browse through the profile & the user list. Infact the "GO" button > >>>> gets deactivated as shown in the screenshot. > >>>> > >>>> How do I set this right and get the user list? > >>>> > >>>> -- > >>>> > >>>> Thanks & Regards, > >>>> > >>>> > >>>> Anantha Raghava > >>>> > >>>> eXza Technology Consulting & Services > >>>> > >>>> > >>>> Do not print this e-mail unless required. Save Paper & trees. > >>>> > >>>> > >>>> > >>>> _______________________________________________ > >>>> Users mailing list > >>>> [email protected] > >>>> http://lists.ovirt.org/mailman/listinfo/users > >>>> > _______________________________________________ Users mailing list [email protected] http://lists.ovirt.org/mailman/listinfo/users
