1. install ovirt-engine-extension-aaa-ldap, it is available in ovirt-3.5-snapshots repository.2. create /etc/ovirt-engine/extensions.d/din.intranet-authz.propertiesovirt.engine.extension.name = din-intranet-authzovirt.engine.extension.bindings.method = jbossmoduleovirt.engine.extension.binding.jbossmodule.module = org.ovirt.engine-extensions.aaa.ldapovirt.engine.extension.binding.jbossmodule.class = org.ovirt.engineextensions.aaa.ldap.AuthzExtensionovirt.engine.extension.provides = org.ovirt.engine.api.extensions.aaa.Authzconfig.profile.file.1 = /etc/ovirt-engine/aaa/din.intranet.properties3. create /etc/ovirt-engine/extensions.d/din.intranet-authn.propertiesovirt.engine.extension.name = din-intranet-authnovirt.engine.extension.bindings.method = jbossmoduleovirt.engine.extension.binding.jbossmodule.module = org.ovirt.engine-extensions.aaa.ldapovirt.engine.extension.binding.jbossmodule.class = org.ovirt.engineextensions.aaa.ldap.AuthnExtensionovirt.engine.extension.provides = org.ovirt.engine.api.extensions.aaa.Authnovirt.engine.aaa.authn.profile.name = din.intranetovirt.engine.aaa.authn.authz.plugin = din-intranet-authzconfig.profile.file.1 = /etc/ovirt-engine/aaa/din.intranet.properties4. create /etc/ovirt-engine/aaa/din.intranet.propertiesinclude = <ipa.properties>vars.user = uid=admin,cn=users,cn=accounts,dc=din,dc=intranetvars.password = 123456vars.server = ipa1.din.intranetpool.default.serverset.single.server = ${global:vars.server}pool.default.auth.simple.bindDN = ${global:vars.user}pool.default.auth.simple.password = ${global:vars.password}5. restart engine.
Thanks a lot Alon.