...
Code Block | ||
---|---|---|
| ||
...
"authentication" : {
...
"auth_method_1" : "ms-ldap",
#First let's define the ms-ldap specific requirements
"auth_ms_ldap_attr" : "sAMAccountName",
"auth_ms_ldap_base" : "dc=contoso,dc=local",
"auth_ms_ldap_dn_acc" : "svc_omk_admin", # you should only need to use the username here, but if this is not successful, you can use username@domain as well.
"auth_ms_ldap_dn_psw" : "password_of_the_dn_acc_above",
"auth_ms_ldap_server" : "IP_ADDRESS_OF_YOUR_MS_LDAP_SERVER", #eg. 192.168.1.22
#Now we add in the ldap specific requirements, including enabling auth_ldap_privs
"auth_ldap_privs" : 1,
"auth_ldap_context" : "dc=contoso,dc=local",
"auth_ldap_acc" : "svc_omk_admin@contoso.local",
"auth_ldap_psw" : "password_of_the_auth_ldap_acc_above",
"auth_ldap_group" : "memberOf",
"auth_ldap_server" : "the_fqdn_of_your_ad_server:389", # you could also use an IP address here, but you need to ensure that the LDAP/LDAPS port is added in the value, eg. 192.168.1.22:389
...
},
... |
Once saved, you will then need to restart the omkd daemon for this to take affect.
...