DEV Community

Cover image for OpenStack Keystone LDAP Konfigürasyonu
Doğukan Eren for Açıklab

Posted on • Edited on

1

OpenStack Keystone LDAP Konfigürasyonu

OpenStack kurulumuna buradan ulaşabilirsiniz.

OpenStack kurulu makinamızın terminaline girelim. Sonrasında identity servisimiz olan keystone ayarlarına girelim.

nano /etc/keystone/keystone.conf
Enter fullscreen mode Exit fullscreen mode

[ldap] alanına gidelim ve aşağıdaki gibi kendi ldap bilgileriniz ile güncelleyecek şekilde düzenleyelim.

[ldap]
url = ldap://192.168.2.42:389
user = CN=Administrator,CN=Users,DC=derentest,DC=lab
password = Passw0rd
suffix = DC=derentest,DC=lab
debug_level = 4095

user_tree_dn = CN=Users,DC=derentest,DC=lab
user_objectclass         = person
user_filter              =
user_id_attribute      = cn
user_name_attribute    = cn
user_mail_attribute    = mail
user_pass_attribute    =
user_enabled_attribute = userAccountControl
user_enabled_mask      = 2
user_enabled_invert    = false
user_enabled_default   = 512
user_attribute_ignore    = password,tenant_id,tenants
user_allow_create        = False
user_allow_update        = False
user_allow_delete        = False

group_id_attribute     = cn
group_name_attribute   = ou
group_member_attribute = member
group_desc_attribute   = description
group_additional_attribute_mapping =

Enter fullscreen mode Exit fullscreen mode

Sonrasında aynı dosydakaki [identiy] alanını aşağıdaki gibi düzenleyebiliriz.

[identity]
driver = ldap
Enter fullscreen mode Exit fullscreen mode

Bu işlemler sonucunda apache2 servisini yendiden başlattığınızda otantikasyon işlemi ldap üzerinden yapılmaya başlayacaktır.

log dosyaları

/var/log/keystone/keystone-manage.log
/var/log/apache2/keystone.log
Enter fullscreen mode Exit fullscreen mode

AWS Security LIVE!

Tune in for AWS Security LIVE!

Join AWS Security LIVE! for expert insights and actionable tips to protect your organization and keep security teams prepared.

Learn More

Top comments (0)

AWS Security LIVE!

Tune in for AWS Security LIVE!

Join AWS Security LIVE! for expert insights and actionable tips to protect your organization and keep security teams prepared.

Learn More

👋 Kindness is contagious

Discover a treasure trove of wisdom within this insightful piece, highly respected in the nurturing DEV Community enviroment. Developers, whether novice or expert, are encouraged to participate and add to our shared knowledge basin.

A simple "thank you" can illuminate someone's day. Express your appreciation in the comments section!

On DEV, sharing ideas smoothens our journey and strengthens our community ties. Learn something useful? Offering a quick thanks to the author is deeply appreciated.

Okay