Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

Ldap multiple user_tree_dn

Hi There

I have managed to get Ldap authentication working (Active Directory specfically) but I am having a bit of trouble with the layout. I am using the Suse Cloud Hybrid Identity driver(https://github.com/SUSE-Cloud/keystone-hybrid-backend/tree/kilo). The problem is that the users in the Directory are spread out over a number of OU's and I cannot get all of them in the user_tree_dn. If I don't set a user_tree_dn or I set the dn to one level I don't get any users listed. This is a production Active Directory so changing everything around to suit Openstack isn't really possible.

Is there any way of specifying multiple user_tree_dn's or an option to write my own ldap query?

Thanks in advance for any help.

Ldap multiple user_tree_dn

Hi There

I have managed to get Ldap authentication working (Active Directory specfically) but I am having a bit of trouble with the layout. I am using the Suse Cloud Hybrid Identity driver(https://github.com/SUSE-Cloud/keystone-hybrid-backend/tree/kilo). driver(https://github.com/SUSE-Cloud/keystone-hybrid-backend/tree/kilo).

The problem is that the users in the Directory are spread out over a number of OU's and I cannot get all of them in the user_tree_dn. If I don't set a user_tree_dn or I set the dn to one level I don't get any users listed. This is a production Active Directory so changing everything around to suit Openstack isn't really possible.

Is there any way of specifying multiple user_tree_dn's or an option to write my own ldap query?

Thanks in advance for any help.