Providing centralized LDAP configuration with HA setup


I have configured my grafana server (ver 4.2.0) to work against an LDAP server (Microsoft AD) for authentication and role-based access. I have the ldap configuration stored in the ldap.toml file.

My question: Is there any way to store the ldap.toml file (or equivalent configuration) in a central repository (database, cache, etc.)?

With an ldap.toml file, when enabling HA through multiple Grafana servers, the ldap configurations will need to be individually pushed to each of the separate servers, and the grafana servers reloaded. This create an operations overhead, and I was hoping there was a way to centrally store the group-org-role mapping so the servers don’t have to be reloaded.

Usually this is not a problem as a configuration management tools like Puppet, Chef, Ansible, Docker etc can automate the process of deployment & configuration updates.

But we are hoping that a future version of Grafana also (as an alternative) provides a UI and database storage for all server settings.

1 Like