===== LPAR2RRD with LDAP =====
Install mod:
sudo yum install mod_ldap
Modify file /etc/httpd/conf.d/lpar2rrd.conf:
### LPAR2RRD config ###
LDAPSharedCacheSize 500000
LDAPCacheEntries 1024
LDAPCacheTTL 600
LDAPOpCacheEntries 1024
LDAPOpCacheTTL 600
Alias /lpar2rrd "/home/lpar2rrd/lpar2rrd/www/"
Options Indexes FollowSymLinks Includes MultiViews
AuthLDAPBindDN "uid=admin,cn=users,cn=accounts,dc=gbmdc,dc=dc"
AuthLDAPBindPassword "Manager20"
# search user
AuthLDAPURL "ldap://idcgbmadmipa01.gbmdc.dc:389/cn=users,cn=accounts,dc=gbmdc,dc=dc?uid"
AuthType Basic
AuthName "Active Directory password"
AuthBasicProvider ldap
# Important, otherwise "(9)Bad file descriptor: Could not open password file: (null)"
AuthUserFile /dev/null
# allow only users from the following group(s)
# Require ldap-group CN=lpar2rrd,OU=Access Groups,OU=UNIX,OU=Services,DC=xorux,DC=com
Order allow,deny
Allow from all
Require valid-user
# CGI-BIN
ScriptAlias /lpar2rrd-cgi/ "/home/lpar2rrd/lpar2rrd/lpar2rrd-cgi/"
AllowOverride None
Options ExecCGI Includes
AuthLDAPBindDN "uid=admin,cn=users,cn=accounts,dc=gbmdc,dc=dc"
AuthLDAPBindPassword "Manager20"
# search user
# AuthLDAPURL "ldap://idcgbmadmipa01.gbmdc.dc:389/?cn,memberOf?sub?(objectClass=*)"
AuthLDAPURL "ldap://idcgbmadmipa01.gbmdc.dc:389/cn=users,cn=accounts,dc=gbmdc,dc=dc?uid"
AuthType Basic
AuthName "Active Directory password"
AuthBasicProvider ldap
# Important, otherwise "(9)Bad file descriptor: Could not open password file: (null)"
AuthUserFile /dev/null
# allow only users from the following group(s)
# Require ldap-group CN=lpar2rrd,OU=Access Groups,OU=UNIX,OU=Services,DC=xorux,DC=com
Order allow,deny
Allow from all
Require valid-user
==== References ====
* https://www.lpar2rrd.com/ldap_install.php
* https://docs.cloudera.com/HDPDocuments/HDP3/HDP-3.1.5/ambari-authentication-ldap-ad/content/amb_freeIPA_ladap_setup_example.html
* https://access.redhat.com/discussions/3354191