External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-02-24 22:46:01 -03:30
Code Issues Packages Projects Releases Wiki Activity

Added some Doc for FREEipa

Browse Source
This commit is contained in:
Numblesix
2018-10-12 19:57:19 +02:00
committed by Ryan Petrello
parent 07aaad53aa
commit bf39a2a747
1 changed files with 55 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

53
docs/auth/ldap.md
View File

@@ -10,3 +10,56 @@ The default set of configuration fields take the form `AUTH_LDAP_<field name>`.
## Test environment setup ## Test environment setup
Please see README.md of this repository: https://github.com/jangsutsr/deploy_ldap.git. Please see README.md of this repository: https://github.com/jangsutsr/deploy_ldap.git.
# Basic setup for FreeIPA
LDAP Server URI (append if you have multiple LDAPs)
`ldaps://{{serverip1}}:636`
LDAP BIND DN (How to create a bind account in [FreeIPA](https://www.freeipa.org/page/Creating_a_binddn_for_Foreman)
`uid=awx-bind,cn=sysaccounts,cn=etc,dc=example,dc=com`
LDAP BIND PASSWORD
`{{yourbindaccountpassword}}`
LDAP USER DN TEMPLATE
`uid=%(user)s,cn=users,cn=accounts,dc=example,dc=com`
LDAP GROUP TYPE
`NestedMemberDNGroupType`
LDAP GROUP SEARCH
```
[
"cn=groups,cn=accounts,dc=example,dc=com",
"SCOPE_SUBTREE",
"(objectClass=groupOfNames)"
]
```
LDAP USER ATTRIBUTE MAP
```
{
"first_name": "givenName",
"last_name": "sn",
"email": "mail"
}
```
LDAP USER FLAGS BY GROUP
```
{
"is_superuser": "cn={{superusergroupname}},cn=groups,cn=accounts,dc=example,dc=com"
}
```
LDAP ORGANIZATION MAP
```
{
"{{yourorganizationname}}": {
"admins": "cn={{admingroupname}},cn=groups,cn=accounts,dc=example,dc=com",
"remove_admins": false
}
}
```