Grafana 使用SSL加密集成 OpenLDAP 发表于 2022-08-22 | 分类于 Grafana 字数统计: 222 | 阅读时长 ≈ 1准备grafana相应的权限用户组设置ldap配置文件ldap使用的是自签发证书1234567891011121314151617181920212223242526272829303132333435363738394041424344[root@localhost grafana]# vim ldap.toml[log]mode = 'console'#filters = 'ldap:debug'[[servers]]host = "ldap.sys.com"port = 10636use_ssl = truestart_tls = falsessl_skip_verify = truebind_dn = "cn=admin,dc=sys,dc=com"bind_password = 'abc.abc'timeout = 10search_filter = "(cn=%s)"search_base_dns = ["ou=users,dc=sys,dc=com"]group_search_filter = "(&(objectClass=posixGroup)(memberUid=%s))"group_search_base_dns = ["ou=AWS-UAT,ou=grafana,ou=groups,dc=sys,dc=com"]group_search_filter_user_attribute = "uid"[servers.attributes]name = "givenName"surname = "sn"username = "cn"member_of = "cn"email = "mail"#admins组的用户分配到Admin权限组[[servers.group_mappings]]group_dn = "AWS-UAT-Admins"org_role = "Admin"#editors组的用户分配到Editor权限组[[servers.group_mappings]]group_dn = "grafana-editors"org_role = "Editor"#viewers组的用户分配到viewer权限组[[servers.group_mappings]]group_dn = "grafana-viewers"org_role = "Viewer"配置完后重启grafana服务测试ldap账户登录-------------本文结束感谢您的阅读-------------
