API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Sep 29th, 2019
261
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.09 KB | None | 0 0
raw download clone embed print report
  1. ## Environment Variables for grafana-deployment.yaml
  2. GF_AUTH_LDAP_ENABLED=true
  3. GF_AUTH_LDAP_CONFIG_FILE=/etc/grafana/ldap.toml
  4.  
  5. ## Volume Mounts
  6. - mountPath: /etc/grafana/ldap.toml
  7. name: grafana-ldap-config
  8. readOnly: false
  9.  
  10. ## Volume
  11. - configMap:
  12. name: grafana-ldap-config
  13. name: grafana-ldap-config
  14.  
  15. ## ldap.toml config map
  16. apiVersion: v1
  17. kind: ConfigMap
  18. metadata:
  19. name: grana-ldap-config
  20. namespace: monitoring
  21. data:
  22. ldap.toml |-
  23. [[servers]]
  24. # Ldap server host (specify multiple hosts space separated)
  25. host = "127.0.0.1"
  26. # Default port is 389 or 636 if use_ssl = true
  27. port = 389
  28. # Set to true if ldap server supports TLS
  29. use_ssl = false
  30. # Set to true if connect ldap server with STARTTLS pattern (create connection in insecure, then upgrade to secure connection with TLS)
  31. start_tls = false
  32. # set to true if you want to skip ssl cert validation
  33. ssl_skip_verify = false
  34. # set to the path to your root CA certificate or leave unset to use system defaults
  35. # root_ca_cert = "/path/to/certificate.crt"
  36. # Authentication against LDAP servers requiring client certificates
  37. # client_cert = "/path/to/client.crt"
  38. # client_key = "/path/to/client.key"
  39.  
  40. # Search user bind dn
  41. bind_dn = "cn=admin,dc=grafana,dc=org"
  42. # Search user bind password
  43. # If the password contains # or ; you have to wrap it with triple quotes. Ex """#password;"""
  44. bind_password = 'grafana'
  45.  
  46. # User search filter, for example "(cn=%s)" or "(sAMAccountName=%s)" or "(uid=%s)"
  47. # Allow login from email or username, example "(|(sAMAccountName=%s)(userPrincipalName=%s))"
  48. search_filter = "(cn=%s)"
  49.  
  50. # An array of base dns to search through
  51. search_base_dns = ["dc=grafana,dc=org"]
  52.  
  53. # group_search_filter = "(&(objectClass=posixGroup)(memberUid=%s))"
  54. # group_search_filter_user_attribute = "distinguishedName"
  55. # group_search_base_dns = ["ou=groups,dc=grafana,dc=org"]
  56.  
  57. # Specify names of the ldap attributes your ldap uses
  58. [servers.attributes]
  59. name = "givenName"
  60. surname = "sn"
  61. username = "cn"
  62. member_of = "memberOf"
  63. email = "email"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!