I had a similar issue, my LDAP guy said oVirt engine was asking for uidObject which our ldap didn't provide and gave me this config addition to make to the /etc/ovirt-engine/aaa/MY.DOMAIN.properties file so it would use inetOrgPerson instead
# override default ldap filter. defaults found at # https://github.com/oVirt/ovirt-engine-extension-aaa-ldap/blob/master/profiles/openldap.properties sequence.openldap-init-vars.040.var-set.value = (objectClass=inetOrgPerson)(${seq:simple_attrsUserName}=*) On Tue, Sep 3, 2019 at 10:10 AM Rick A <[email protected]> wrote: > > Trying to get oVirt to use LDAP for user authentication. It seems to bind, > but when I test it (Login Flow and Search) before applying the settings, I > get the message below (I can confirm the credentials ARE valid). I also > tried to set it up manually and still get the same result. I'm using the > same information on Bugzilla and it works fine. I've seen similar threads > here but without much answers. Anyone have any good links or docs I can > view to get this set up? > > oVirt Node Version: 4.3.3.6-1.el7 > > API: <--Authn.InvokeCommands.AUTHENTICATE_CREDENTIALS profile=' > mydomain.com' result=CREDENTIALS_INVALID > _______________________________________________ > Users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Privacy Statement: https://www.ovirt.org/site/privacy-policy/ > oVirt Code of Conduct: > https://www.ovirt.org/community/about/community-guidelines/ > List Archives: > https://lists.ovirt.org/archives/list/[email protected]/message/C4ZQYTRO3WVIB6Q6MC2SHGUH7CENKB4K/ >
_______________________________________________ Users mailing list -- [email protected] To unsubscribe send an email to [email protected] Privacy Statement: https://www.ovirt.org/site/privacy-policy/ oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/[email protected]/message/ADH6HUHFHTHOERBAE4QWD7DCLZP2H37J/
