[ovirt-users] oVirt Active Directory Integration

Ondra Machacek omachace at redhat.com
Wed Sep 28 07:53:49 UTC 2016 

----- Anantha Raghava <raghav at exzatechconsulting.com> wrote:
> Hello Ondra
> 
> Please find the attached file. I have also attached the setup log file. 
> I find the errors & warnings there too. But I am unable to figure out 
> what really went wrong.
> 
> One more thing, while setting aaa-ldap extension, since it threw error 
> on user DN, did not properly recognise, I used "anonymous", also did not 
> perform the Login Test. Are these the root cause?

Yes, it is root cause. Active directory usually has anonymous bind disabled. You can enter UPN instead of DN, if you want. In your case it will be something like vdiadmin at rvce.in. Please note that AD usually use CN attribute in DN, not uid attribute, that may be the problem in your DN.
> 
> -- 
> 
> Thanks & Regards,
> 
> 
> Anantha Raghava
> 
> eXza Technology Consulting & Services
> 
> 
> 
> Do not print this e-mail unless required. Save Paper & trees.
> 
> On Wednesday 28 September 2016 12:18 PM, Ondra Machacek wrote:
> > On 09/28/2016 05:25 AM, Anantha Raghava wrote:
> >> Hi,
> >>
> >> I am trying to integrate the oVirt Engine with Active Directory to
> >> enable user logins. I installed the ovirt ldap extension and executed
> >> the setup. The process completed successfully and the profile is visible
> >> in engine log in page.
> >
> > Most probably it wasn't successful, because as you can see in 
> > screenshot there is no 'namespace', you should see there something, if 
> > configuration is correct.
> >
> > Can you please send output of the following command?
> >
> >  $ ovirt-engine-extensions-tool --log-level=FINEST 
> > --log-file=/tmp/aaa.log aaa search --extension-name=domain-authz
> >
> > There should be some ERROR or WARN.
> >
> > Thanks.
> >
> >>
> >> Now, when I try to add the user and assign the roles, it is not allowing
> >> me to browse through the profile & the user list. Infact the "GO" button
> >> gets deactivated as shown in the screenshot.
> >>
> >> How do I set this right and get the user list?
> >>
> >> -- 
> >>
> >> Thanks & Regards,
> >>
> >>
> >> Anantha Raghava
> >>
> >> eXza Technology Consulting & Services
> >>
> >>
> >> Do not print this e-mail unless required. Save Paper & trees.
> >>
> >>
> >>
> >> _______________________________________________
> >> Users mailing list
> >> Users at ovirt.org
> >> http://lists.ovirt.org/mailman/listinfo/users
> >>
>

More information about the Users mailing list