Ruby on rails 无需服务器端访问的Gitlab LDAP(Active Directory)身份验证
我正在RHEL6.6上使用GitLab Omnibus 7.10.0。我已使用以下配置启用LDAP:Ruby on rails 无需服务器端访问的Gitlab LDAP(Active Directory)身份验证,ruby-on-rails,active-directory,ldap,gitlab,Ruby On Rails,Active Directory,Ldap,Gitlab,我正在RHEL6.6上使用GitLab Omnibus 7.10.0。我已使用以下配置启用LDAP: gitlab_rails['ldap_enabled'] = true gitlab_rails['ldap_servers'] = YAML.load <<-'EOS' # remember to close this block with 'EOS' below main: # 'main' is the GitLab 'provider ID' of this LDAP ser
gitlab_rails['ldap_enabled'] = true
gitlab_rails['ldap_servers'] = YAML.load <<-'EOS' # remember to close this block with 'EOS' below
main: # 'main' is the GitLab 'provider ID' of this LDAP server
label: 'FOO COM Active Directory (LDAP)'
host: 'ad.server.foo.com'
port: 3268
uid: 'someuser'
method: 'plain' # "tls" or "ssl" or "plain"
bind_dn: 'CN=My Whole. Name,OU=Some Users,DC=ad,DC=server,DC=foo,DC=com'
password: 'thepassword'
active_directory: true
allow_username_or_email_login: false
block_auto_created_users: false
base: 'DC=ad,DC=server,DC=foo,DC=com'
user_filter: ''
# ## EE only
# group_base: ''
# admin_group: ''
# sync_ssh_keys: false
#
# secondary: # NOT FILLED OUT
EOS
我明白了
Checking LDAP ...
LDAP users with access to your GitLab server (only showing the first 100 results)
Server: ldapmain
Checking LDAP ... Finished
我可以通过这个帐户(我的个人帐户)或其他不同应用程序的帐户搜索使用java的个人用户,但无法使用gitlab获得广告。通过在Windows框上运行此命令,我获得了绑定dn“My Whole.Name”。
探地雷达
我还尝试了以下绑定:
uid=myADaccountname,OU=Some Users,DC=ad,DC=server,DC=foo,DC=com
and
myADaccountname@ad.server.foo.com
但是我仍然有同样的问题。对于Active Directory,uid应该是:
uid: 'sAMAccountName'
Gitlab应该使用
bind\u dn
中指定的用户和给定的密码进行连接 自GitLab 9.5.1以来,uid
现在需要[
]
见本期:
这可能只是一个将被修复的bug
我必须将Active Directory的值从上面的答案更新为:
uid:['sAMAccountName']
谢谢,起初我没意识到sAMAccountName是一个文字!
uid: 'sAMAccountName'