79 lines
1.6 KiB
TOML
79 lines
1.6 KiB
TOML
# To troubleshoot and get more log info enable ldap debug logging in grafana.ini
|
|
# [log]
|
|
# filters = ldap:debug
|
|
|
|
# For the verbose comments options see "openldap" env block
|
|
|
|
# --- First LDAP Server ---
|
|
[[servers]]
|
|
host = "127.0.0.1"
|
|
port = 389
|
|
use_ssl = false
|
|
start_tls = false
|
|
tls_ciphers = []
|
|
min_tls_version = ""
|
|
ssl_skip_verify = false
|
|
|
|
timeout = 10
|
|
bind_dn = "cn=admin,dc=srv1-grafana,dc=org"
|
|
bind_password = 'grafana'
|
|
search_filter = "(cn=%s)"
|
|
search_base_dns = ["dc=srv1-grafana,dc=org"]
|
|
|
|
[servers.attributes]
|
|
name = "givenName"
|
|
surname = "sn"
|
|
username = "cn"
|
|
member_of = "memberOf"
|
|
email = "email"
|
|
|
|
# Map ldap groups to grafana org roles
|
|
[[servers.group_mappings]]
|
|
group_dn = "cn=admins,ou=groups,dc=srv1-grafana,dc=org"
|
|
org_role = "Admin"
|
|
|
|
[[servers.group_mappings]]
|
|
group_dn = "cn=editors,ou=groups,dc=srv1-grafana,dc=org"
|
|
org_role = "Editor"
|
|
|
|
[[servers.group_mappings]]
|
|
group_dn = "*"
|
|
org_role = "Viewer"
|
|
|
|
|
|
# --- Second LDAP Server ---
|
|
|
|
[[servers]]
|
|
host = "127.0.0.1"
|
|
port = 1389
|
|
use_ssl = false
|
|
start_tls = false
|
|
tls_ciphers = []
|
|
min_tls_version = ""
|
|
ssl_skip_verify = false
|
|
|
|
timeout = 10
|
|
bind_dn = "cn=admin,dc=srv2-grafana,dc=org"
|
|
bind_password = 'grafana'
|
|
search_filter = "(cn=%s)"
|
|
search_base_dns = ["dc=srv2-grafana,dc=org"]
|
|
|
|
[servers.attributes]
|
|
name = "givenName"
|
|
surname = "sn"
|
|
username = "cn"
|
|
member_of = "memberOf"
|
|
email = "email"
|
|
|
|
# Map ldap groups to grafana org roles
|
|
[[servers.group_mappings]]
|
|
group_dn = "cn=admins,ou=groups,dc=srv2-grafana,dc=org"
|
|
org_role = "Admin"
|
|
|
|
[[servers.group_mappings]]
|
|
group_dn = "cn=editors,ou=groups,dc=srv2-grafana,dc=org"
|
|
org_role = "Editor"
|
|
|
|
[[servers.group_mappings]]
|
|
group_dn = "*"
|
|
org_role = "Viewer" |