AWX LDAP Auth with FreeIPA

From Bitbull Wiki

Revision as of 15:44, 22 September 2021 by Chris (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to navigation Jump to search

Just to not forget :-)

AWX LDAP Auth with FreeIPA

1 My Settings

LDAP Server IP: 192.168.11.202
Bind User DN: uid=ldap-bind,cn=users,cn=accounts,dc=bit,dc=ch
Admin Group DN: cn=ansibleadmin,cn=groups,cn=accounts,dc=bit,dc=ch

2 HowTo Configure

LDAP Server URI: ldap://192.168.11.202:389
LDAP Bind DN: uid=ldap-bind,cn=users,cn=accounts,dc=bit,dc=ch
LDAP Bind Password: ***
LDAP User DN Template: uid=%(user)s,cn=users,cn=accounts,dc=bit,dc=ch
LDAP Group Type: MemberDNGroupType
LDAP Require Group: cn=ansibleadmin,cn=groups,cn=accounts,dc=bit,dc=ch
LDAP Deny Group: Not configured
LDAP Start TLS: Off

LDAP Group Search:

  "dc=bit,dc=ch",
  "SCOPE_SUBTREE",
  "(objectClass=groupOfNames)"

LDAP User Attribute Map:

  "first_name": "givenName",
  "last_name": "sn",
  "email": "mail"

LDAP Group Type Parameters:

{
  "name_attr": "cn",
  "member_attr": "member"
}

LDAP User Flags By Group:

{
  "is_superuser": [
    "cn=ansibleadmin,cn=groups,cn=accounts,dc=bit,dc=ch"
  ]
}

Retrieved from "http://www.bitbull.ch/wiki/index.php?title=AWX_LDAP_Auth_with_FreeIPA&oldid=5438"

Ansible