We have Grafana 12.4.2 with LDAP auth active and I noticed a strange bahaviour.
The LDAP Config (Group Mapping, Lookups, etc.) are stored in a *.TOML file in the grafana config folder and referenced to by the “default.ini” config file.
As it should be according to the documentation.
LDAP config works.
However when changing the LDAP config in the UI “Administration → Authentication → LDAP” e.g. the “Search Filter” property this is saved in Grafana and also persistent after a service restart.
In the end the values configured in the *.TOML file that should be used are not used anymore and also do not get applied again after restart, which makes the config in the *.TOML file kind of useless and overall is confusing what LDAP config is active now.
Expected behaviour would be that if LDAP is configured in a .TOML file this config is the one that gets used and it cannot be changed in the UI when not also refelected in the *.TOML file.
Imho, if a *.TOML file is used for configuring LDAP Auth nobody should be able to change it in the UI like a provisioned setup?
-
What Grafana version and what operating system are you using?
- Grafana 12.4.2
-
What are you trying to achieve?
- Figure out what config Grafana uses and where it is saved
-
How are you trying to achieve it?
- UI and TOML file
-
What happened?
- A LDAP Auth change in the UI seems to be saved somewhere and the configured *.toml file is not used anymore as it seems.
-
What did you expect to happen?
- On Service start the TOML file gets read and is used for LDAP auth
-
Did you receive any errors in the Grafana UI or in related logs? If so, please tell us exactly what they were.
- No
-
Did you follow any online instructions? If so, what is the URL?
- LDAP setup documentation on Grafana website
