<div dir="ltr"><div><br></div>below are the three files which I have modified.<br><div><br><br>[root@cstlb2 extensions.d]# cat profile1-authn.properties <br><a href="http://ovirt.engine.extension.name">ovirt.engine.extension.name</a> = cloudspin-authn<br>ovirt.engine.extension.bindings.method = jbossmodule<br>ovirt.engine.extension.binding.jbossmodule.module = org.ovirt.engine-extensions.aaa.ldap<br>ovirt.engine.extension.binding.jbossmodule.class = org.ovirt.engineextensions.aaa.ldap.AuthnExtension<br>ovirt.engine.extension.provides = org.ovirt.engine.api.extensions.aaa.Authn<br><a href="http://ovirt.engine.aaa.authn.profile.name">ovirt.engine.aaa.authn.profile.name</a> = cloudspin<br>ovirt.engine.aaa.authn.authz.plugin = cloudspin-auth<br>config.profile.file.1 = /etc/ovirt-engine/aaa/ldap1.properties<br><br><br>[root@cstlb2 extensions.d]# ls<br>profile1-authn.properties profile1-authz.properties<br>[root@cstlb2 extensions.d]# cat profile1-authz.properties <br><a href="http://ovirt.engine.extension.name">ovirt.engine.extension.name</a> = cloudspin-authz<br>ovirt.engine.extension.bindings.method = jbossmodule<br>ovirt.engine.extension.binding.jbossmodule.module = org.ovirt.engine-extensions.aaa.ldap<br>ovirt.engine.extension.binding.jbossmodule.class = org.ovirt.engineextensions.aaa.ldap.AuthzExtension<br>ovirt.engine.extension.provides = org.ovirt.engine.api.extensions.aaa.Authz<br>config.profile.file.1 = /etc/ovirt-engine/aaa/ldap1.properties<br>[root@cstlb2 extensions.d]# <br><br><br><br>[root@cstlb2 aaa]# pwd<br>/etc/ovirt-engine/aaa<br>[root@cstlb2 aaa]# ls<br>ldap1.properties<br>[root@cstlb2 aaa]# cat ldap1.properties <br>#<br># Select one<br>#<br>include = <openldap.properties><br>#include = <389ds.properties><br>#include = <rhds.properties><br>#include = <ipa.properties><br>#include = <iplanet.properties><br>#include = <rfc2307.properties><br>#include = <rfc2307-openldap.properties><br><br>#<br># Server<br>#<br>vars.server = <a href="http://my.abc.net">my.abc.net</a> <br><br>#<br># Search user and its password.<br>#<br>vars.user = uid=search,cn=nbudoor,cn=Departments,cn=Corporate,cn=Bangalore,cn=users,dc=nbudoor,dc=net<br>vars.password = company<br><br>pool.default.serverset.single.server = ${global:vars.server}<br>pool.default.auth.simple.bindDN = ${global:vars.user}<br>pool.default.auth.simple.password = ${global:vars.password}<br><br># Create keystore, import certificate chain and uncomment<br># if using ssl/tls.<br>#pool.default.ssl.startTLS = true<br>#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks<br>#pool.default.ssl.truststore.password = changeit<br>[root@cstlb2 aaa]# <br><br><br><br><br><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Sep 22, 2015 at 8:07 PM, Alon Bar-Lev <span dir="ltr"><<a href="mailto:alonbl@redhat.com" target="_blank">alonbl@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span class=""><br>
<br>
----- Original Message -----<br>
> From: "Budur Nagaraju" <<a href="mailto:nbudoor@gmail.com">nbudoor@gmail.com</a>><br>
> To: "Alon Bar-Lev" <<a href="mailto:alonbl@redhat.com">alonbl@redhat.com</a>><br>
> Cc: <a href="mailto:users@ovirt.org">users@ovirt.org</a><br>
</span><span class="">> Sent: Tuesday, September 22, 2015 5:35:16 PM<br>
> Subject: Re: [ovirt-users] LDAP Authentication<br>
><br>
</span><span class="">> its too complicated ,you have any script or video ?<br>
<br>
</span>in 3.6 we have a setup script.<br>
for now:<br>
<br>
cp -r /usr/share/ovirt-engine/examples/simple/. /etc/ovirt-engine/<br>
<br>
this is written in the README.<br>
<br>
then customize files at /etc/ovirt-engine/extnesions.d/* /etc/ovirt-engine/aaa/* to match your setup<br>
<div class="HOEnZb"><div class="h5"><br>
><br>
><br>
> On Tue, Sep 22, 2015 at 8:00 PM, Alon Bar-Lev <<a href="mailto:alonbl@redhat.com">alonbl@redhat.com</a>> wrote:<br>
><br>
> ><br>
> ><br>
> > ----- Original Message -----<br>
> > > From: "Budur Nagaraju" <<a href="mailto:nbudoor@gmail.com">nbudoor@gmail.com</a>><br>
> > > To: "Alon Bar-Lev" <<a href="mailto:alonbl@redhat.com">alonbl@redhat.com</a>><br>
> > > Cc: <a href="mailto:users@ovirt.org">users@ovirt.org</a><br>
> > > Sent: Tuesday, September 22, 2015 5:24:36 PM<br>
> > > Subject: Re: [ovirt-users] LDAP Authentication<br>
> > ><br>
> > > HI Alon,<br>
> > ><br>
> > > Below is the configuration which I have done ,but unable to search the<br>
> > > users in UI<br>
> > > can you pls help me ?<br>
> ><br>
> > you need three files, see the<br>
> > /usr/share/ovirt-engine-extension-aaa-ldap/examples/simple<br>
> ><br>
> > ><br>
> > ><br>
> > > [root@cstlb2 aaa]# cat ldap1.properties<br>
> > > #<br>
> > > # Select one<br>
> > > #<br>
> > > include = <openldap.properties><br>
> > > #include = <389ds.properties><br>
> > > #include = <rhds.properties><br>
> > > #include = <ipa.properties><br>
> > > #include = <iplanet.properties><br>
> > > #include = <rfc2307.properties><br>
> > > #include = <rfc2307-openldap.properties><br>
> > ><br>
> > > #<br>
> > > # Server<br>
> > > #<br>
> > > vars.server = <a href="http://my.abc.net" rel="noreferrer" target="_blank">my.abc.net</a><br>
> > ><br>
> > > #<br>
> > > # Search user and its password.<br>
> > > #<br>
> > > vars.user =<br>
> > ><br>
> > uid=search,cn=nbudoor,cn=Departments,cn=Corporate,cn=Bangalore,cn=users,dc=abc,dc=net<br>
> > > vars.password = company1<br>
> > ><br>
> > > pool.default.serverset.single.server = ${global:vars.server}<br>
> > > pool.default.auth.simple.bindDN = ${global:vars.user}<br>
> > > pool.default.auth.simple.password = ${global:vars.password}<br>
> > ><br>
> > > # Create keystore, import certificate chain and uncomment<br>
> > > # if using ssl/tls.<br>
> > > #pool.default.ssl.startTLS = true<br>
> > > #pool.default.ssl.truststore.file =<br>
> > > ${local:_basedir}/${global:vars.server}.jks<br>
> > > #pool.default.ssl.truststore.password = changeit<br>
> > > [root@cstlb2 aaa]#<br>
> > ><br>
> > ><br>
> > ><br>
> > > On Tue, Sep 22, 2015 at 7:25 PM, Alon Bar-Lev <<a href="mailto:alonbl@redhat.com">alonbl@redhat.com</a>> wrote:<br>
> > ><br>
> > > ><br>
> > > ><br>
> > > > ----- Original Message -----<br>
> > > > > From: "Budur Nagaraju" <<a href="mailto:nbudoor@gmail.com">nbudoor@gmail.com</a>><br>
> > > > > To: <a href="mailto:users@ovirt.org">users@ovirt.org</a><br>
> > > > > Sent: Tuesday, September 22, 2015 4:34:46 PM<br>
> > > > > Subject: [ovirt-users] LDAP Authentication<br>
> > > > ><br>
> > > > > HI All,<br>
> > > > ><br>
> > > > > Can someone help me in configuring LDAP authentication for Ovirt ?<br>
> > > ><br>
> > > > Please review:<br>
> > > > <a href="http://www.ovirt.org/Features/AAA" rel="noreferrer" target="_blank">http://www.ovirt.org/Features/AAA</a><br>
> > > ><br>
> > > ><br>
> > <a href="https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob;f=README;hb=ovirt-engine-extension-aaa-ldap-1.0" rel="noreferrer" target="_blank">https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob;f=README;hb=ovirt-engine-extension-aaa-ldap-1.0</a><br>
> > > ><br>
> > ><br>
> ><br>
><br>
</div></div></blockquote></div><br></div>