Ad Widget

Collapse

Zabbix AD Integration

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • sajid4uu2c
    Junior Member
    • Oct 2020
    • 24
    #1

    Zabbix AD Integration

    Hi Team,

    I have assigned all the parameters as suggested in the Zabbix LDAP integration . Still I am getting the error like "Cannot bind to LDAP server."
    Attached the screen grab for the same. Kindly help.

    Zabbix version is : 5.0.5



    Click image for larger version Name: AD Error.png Views: 3776 Size: 34.0 KB ID: 417143


    Note: I do not have any ldap packages installed in my Zabbix server( RHEL 8 )
    So, I cannot run ldapsearch or find any logs. Is it mandatory to install ? Please suggest.

    Thanks
    Tags: None
    • Kos
      Senior Member
      Zabbix Certified SpecialistZabbix Certified Professional
      • Aug 2015
      • 3404
      #2
      I believe that Web-interface authentication is performed by a web-server; therefore you need to be sure that:
      • the package php-ldap (probably, php7-ldap) in installed on computer with the web-server;
      • the communication between your web-server and domain controller (TCP port 389) is not blocked by any firewall;
      • domain controller allows to process non-encrypted LDAP requests. Usually it is a security risk, so admins allow LDAPS (tcp port 636) connections only.
      Some additional notes:
      • if you use an encrypted connections (LDAPS) and your DC uses a self-signed certificate, you will need to add a parameter "TLS_REQCERT allow" to the ldap.conf file (probably, /etc/openldap/ldap.conf) of your computer with web-server;
      • take into account that LDAP username (used in "Bind DN" field) uses the Display name (instead of sAMAccountName, a.k.a login name) of the user.

        Comment

        • sajid4uu2c
          Junior Member
          • Oct 2020
          • 24
          #3
          Thanks Kos I have followed as suggested and able to successfully authenticate LDAP.

            Comment

            Previous template Next
            Working...