[one-users] Sunstone in opennebula 3.0 and LDAP authentication addon

Javier Fontan jfontan at opennebula.org
Mon Nov 7 08:19:23 PST 2011


Hello,
On Sun, Nov 6, 2011 at 12:52 PM, Rolandas
Naujikas<rolandas.naujikas at mif.vu.lt> wrote:> I installed the newest
LDAP authentication addon (2.9.85).> I tried use it from CLI
(onevm,...) - it works.> I tried to authenticate in Sunstone web
interface and it fails.> By analysis of opennebula installation, I
found that in sunstone case> (with basic method) there is used
CloudAuth/BasicCloudAuth.rb class,> which works directly with password
hash in DB.> What to change to make Sunstone work with LDAP
authentication ?> Probably create new LdapCloudAuth.rb, which would
duplicate LDAP addon> functionality already ? Why there is such
duplication for plain and> BasicCloudAuth ?
I've opened a feature request to make Sunstone compatible with
LDAPauthentication [1]. We are still discussing about the best way
todo this. It will probably be ready for the next OpenNebularelease.
> P.S. In our LDAP server users are identified with uid=<username>, not> cn=<username>, it was not difficult to correct that in ldap_auth.rb.
This will be configurable in the next addon release [2].
Bye
[1] http://dev.opennebula.org/issues/967[2] http://dev.opennebula.org/issues/968

-- 
Javier Fontán Muiños
Project Engineer
OpenNebula - The Open Source Toolkit for Data Center Virtualization
www.OpenNebula.org | jfontan at opennebula.org | @OpenNebula



More information about the Users mailing list