<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">On 11/19/2012 10:01 AM, Cristian Falcas
wrote:<br>
</div>
<blockquote
cite="mid:CAMo7R_cgPTu7Qv5uuDHLeHqA8JO2xcRrGeT0g7VXk6DFz3riww@mail.gmail.com"
type="cite">Hi,<br>
<br>
I'm trying to add some users to ovirt using an AD.<br>
<br>
This is the configuration I used for a mediawiki site, which is
working correctly:<br>
$wgAuth = new LdapAuthenticationPlugin();<br>
$wgLDAPUseLocal = true;<br>
$wgLDAPDomainNames = array( "a_domain");<br>
$wgLDAPServerNames = array( "a_domain"=>"<a
moz-do-not-send="true" href="http://site.example.com">site.example.com</a>");<br>
$wgLDAPEncryptionType = array( "a_domain"=>"clear");<br>
$wgLDAPSearchStrings = array(
"a_domain"=>"rom_domain\\USER-NAME");<br>
$wgLDAPBaseDNs = array( "a_domain"=>"dc=company,dc=com");<br>
<br>
Those are the commands I tried using:<br>
engine-manage-domains -action=add -domain=<a
moz-do-not-send="true" href="http://site.example.com">site.example.com</a>
-provider=ActiveDirectory -user=<a moz-do-not-send="true"
href="http://user.name">user.name</a> -interactive<br>
<br>
engine-manage-domains -action=add -domain=a_domain
-provider=ActiveDirectory -user=<a moz-do-not-send="true"
href="mailto:user.name@company.com">user.name@company.com</a>
-interactive<br>
<br>
engine-manage-domains -action=add -domain=a_domain
-provider=ActiveDirectory -user=<a moz-do-not-send="true"
href="mailto:user.name@site.example.com">user.name@site.example.com</a>
-interactive<br>
<br>
<br>
</blockquote>
You don't add an user this way. You add the domain. You have to pass
the domain admin user and the domain admin password.<br>
Then you can use the domain within the engine. e.g. search users,
add access rights for vms etc.<br>
Even login to the engine and assigning rights within the engine you
can handle from the engine itself.<br>
<br>
Regards,<br>
<blockquote
cite="mid:CAMo7R_cgPTu7Qv5uuDHLeHqA8JO2xcRrGeT0g7VXk6DFz3riww@mail.gmail.com"
type="cite">And the output on all tries:<br>
Enter password:<br>
<br>
Error: Authentication Failed. Please verify the fully qualified
domain name that is used for authentication is correct..
Problematic domain is: domain_used_in_command<br>
Failure while applying Kerberos configuration. Details:
Authentication Failed. Please verify the fully qualified domain
name that is used for authentication is correct.<br>
<br>
Can someone help me with the correct parameters?<br>
<br>
<br>
Best regards,<br>
Cristian Falcas<br>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Users@ovirt.org">Users@ovirt.org</a>
<a class="moz-txt-link-freetext" href="http://lists.ovirt.org/mailman/listinfo/users">http://lists.ovirt.org/mailman/listinfo/users</a>
</pre>
</blockquote>
<br>
<br>
<pre class="moz-signature" cols="72">--
Regards,
Vinzenz Feenstra | Senior Software Engineer
RedHat Engineering Virtualization R & D
Phone: +420 532 294 625
IRC: vfeenstr or evilissimo
Better technology. Faster innovation. Powered by community collaboration.
See how it works at redhat.com</pre>
</body>
</html>