Authentication via LDAP and DB

Hello,

i have a Problem with the Authentication.
So i set up a LDAP- and DB-Backend. For the DB-Backend i created a User and tried to log-In with this User. But i didn´t work.
A few days ago i had trouble to login with our AD-Users. I fixed it, after a hint from the Community.
And maybe thats now my Problem, to login with a local User.

Our target is, to have a “look-only” User for our TV, to see always whats going on.

  • Icinga Web 2 version: 2.11.0
  • Used modules and their versions
    Director V1.9.1
  • Web browser used: Chrome
  • Icinga 2 version used: r2.13.4-1
  • PHP version used: 7.4
  • Server operating system and version
    Platform: Ubuntu
    Platform version: 20.04.4 LTS (Focal Fossa)

Config.ini:
[global]
show_stacktraces = “1”
show_application_state_messages = “1”
module_path = “/usr/share/icingaweb2/modules”
config_resource = “User-DB”

[logging]
log = “php”
level = “ERROR”
application = “icingaweb2”

[themes]

[authentication]
default_domain = “**********.local”

authentication.ini:
[icingaweb2]
filter = “!(objectClass=computer)”
backend = “msldap”
base_dn = “DC=,DC=local”
domain = “
******”
resource = “icingaweb_ldap”

resources.ini:
[icingaweb_ldap]
type = “ldap”
hostname = “.local"
port = “389”
encryption = “none”
root_dn = “DC=
,DC=local”
bind_dn = “CN=
,OU=Service User,OU=User,OU=,DC= ,DC=local”
bind_pw = "
*******”
timeout = “5”

[icinga_ido]
type = “db”
db = “mysql”
host = “localhost”
port = “”
dbname = “icinga2”
username = “icinga2”
password = “*************”
charset = “”
use_ssl = “0”

[director]
type = “db”
db = “mysql”
host = “localhost”
port = “5665”
dbname = “director”
username = “director”
password = “*************”
charset = “utf8”
use_ssl = “0”

[User-DB]
type = “db”
db = “mysql”
host = “localhost”
port = “5665”
dbname = “user”
username = “icinga2”
password = “***********”
use_ssl = “0”

Database:
±---------------------------+
| Tables_in_user |
±---------------------------+
| icingaweb_group |
| icingaweb_group_membership |
| icingaweb_rememberme |
| icingaweb_schema |
| icingaweb_user |
| icingaweb_user_preference |
±---------------------------+

Please take a look here, especially the last paragraph.

2 Likes

Hello Johannes,

i figured it out. I had to delete the default_Domain entry in the Authentication.ini and Config.ini.
Then i could logon with my AD-User and with the created local User for Icingaweb2.

Thank you for your help again.

Greetings Sennin