Ldap auth problems: uid=fname / cn="My Name" / member


we use OpenLDAP with Grafana 7.1.0 and trying to get LDAP auth working. Problem is, to get group mapping working.
We have in our LDAP something like:

  • User
# John Deer, People, foo.local
dn: cn=John Deer,ou=People,dc=foo,dc=local
objectClass: webadmAccount
objectClass: person
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: organizationalPerson
objectClass: top
objectClass: shadowAccount
objectClass: HOSTOBJECT
cn: John Deer
uid: jdeer
sn: Deer
  • Groups
# monitoring, Groups, foo.local
dn: cn=monitoring,ou=Groups,dc=foo,dc=local
objectClass: groupOfNames
member: cn=John Deer,ou=People,dc=foo,dc=local

I don’t get it working, to match user uid with cn. All examples have the same uid and cn :slight_smile:


search_base_dns = ["ou=people,dc=foo,dc=local"]

search_filter = "(uid=%s)"
use_ssl = true
start_tls = true

email = "mail"
member_of = "member"
name = "givenName"
username = "uid"

group_dn = "cn=monitoring,ou=groups,dc=foo,dc=local"
org_role = "Admin"

group_dn = "cn=monitoring,ou=groups,dc=foo,dc=local"
org_role = "Editor"

I tried a lot of combinations … but either the Group is wrong (doesn’t exist) or group is empty [ ], so login fails.

It would be great, if someone can put me into the right direction :slight_smile:

cu denny