-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathexample.yaml
40 lines (34 loc) · 1.42 KB
/
example.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
# this is an example config for the ergo-ldap plugin.
# consult the grafana docs for details on how to configure this:
# https://grafana.com/docs/grafana/latest/auth/ldap/
# XXX: where grafana uses underscores in key names, we use hyphens
# example configuration that works with Forum Systems's testing server:
# https://www.forumsys.com/tutorials/integration-how-to/ldap/online-ldap-test-server/
host: "ldap.forumsys.com"
port: 389
timeout: 30s
# uncomment for TLS:
# use-ssl: true
# uncomment for LDAPI:
# url: "ldapi:///path/to/ldap/unix.socket"
# example "single-bind" configuration, where we bind directly to the user's entry:
bind-dn: "uid=%s,dc=example,dc=com"
# example "admin bind" configuration, where we bind to an initial admin user,
# then search for the user's entry with a search filter:
#search-base-dns:
# - "dc=example,dc=com"
#bind-dn: "cn=read-only-admin,dc=example,dc=com"
#bind-password: "password"
#search-filter: "(uid=%s)"
# example of requiring that users be in a particular group
# (note that this is an OR over the listed groups, not an AND):
#require-groups:
# - "ou=mathematicians,dc=example,dc=com"
#group-search-filter-user-attribute: "dn"
#group-search-filter: "(uniqueMember=%s)"
#group-search-base-dns:
# - "dc=example,dc=com"
# example of group membership testing via user attributes, as in AD
# or with OpenLDAP's "memberOf overlay" (overrides group-search-filter):
#attributes:
# member-of: "memberOf"