Hi folks,
I've got an interesting situation I need to deal with; unfortunately I'm not very familiar with Active Directory and the Zabbix documentation for LDAP authentication is a little sparse. Our Zabbix instance (Running Zabbix 2.2.3) is currently set up to use our company's base AD domain for authentication, and this works really well for people that are on-site or on VPN through the base company network. However, we also have a number of smaller satellite companies, each with their own separate AD domains. For other applications this works out alright with trusted domains, but that doesn't seem to be working in Zabbix; the AD credentials they use to cross over don't work, no matter what particular variation of it (I.E. trying things like Domain\UserName) I try.
Within Zabbix's authentication configuration, there doesn't seem to be any way to specify multiple different domains. I've seen some things about handling sub-domains via using a Global Catalog and pointing to the root domain for the Base DN, but I don't think that will work in this case as it's not sub-domains, but actually wholly separate domains that are set up as Trusted with each other.
Does anyone have any ideas on whether this is possible in Zabbix 2.2.3, and how it might be accomplished if so?
I've got an interesting situation I need to deal with; unfortunately I'm not very familiar with Active Directory and the Zabbix documentation for LDAP authentication is a little sparse. Our Zabbix instance (Running Zabbix 2.2.3) is currently set up to use our company's base AD domain for authentication, and this works really well for people that are on-site or on VPN through the base company network. However, we also have a number of smaller satellite companies, each with their own separate AD domains. For other applications this works out alright with trusted domains, but that doesn't seem to be working in Zabbix; the AD credentials they use to cross over don't work, no matter what particular variation of it (I.E. trying things like Domain\UserName) I try.
Within Zabbix's authentication configuration, there doesn't seem to be any way to specify multiple different domains. I've seen some things about handling sub-domains via using a Global Catalog and pointing to the root domain for the Base DN, but I don't think that will work in this case as it's not sub-domains, but actually wholly separate domains that are set up as Trusted with each other.
Does anyone have any ideas on whether this is possible in Zabbix 2.2.3, and how it might be accomplished if so?
Comment