Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

Cannot use LDAP user to login to Cloudera Manager

Solved Go to solution
Highlighted

Cannot use LDAP user to login to Cloudera Manager

New Contributor

I configured a remote ldap server, and add some entries into it.

 

The base DN: dc=sample,dc=com

The organization unit DN: ou=People,dc=sample,dc=com

The inteOrgPerson DN: uid=usera,ou=People,dc=sample,dc=com

 

Then I followd the instruction from this link since I am using the lastest CM: https://www.cloudera.com/documentation/enterprise/latest/topics/cm_sg_external_auth.html

 

And I tried this config below based on the description from the link above

Screen Shot 2017-08-12 at 2.22.21 AM.png

 

 

After restarted the CM server, I could not use 'usera' to login. 

 

Actually I have many groups (organization unit) in the LDAP server, so I really need to use one of the users from these groups to login to Cloudera Manager.

 

Is there anyone who could tell me what I was doing wrong? Many thanks

1 ACCEPTED SOLUTION

Accepted Solutions

Re: Cannot use LDAP user to login to Cloudera Manager

New Contributor

After several tries, I found out groupOfNames should be the group in Cloudera Managers and it works for me. Now I can login with LDAP users and can filter users based on groups

3 REPLIES 3

Re: Cannot use LDAP user to login to Cloudera Manager

New Contributor
When I use 'uid={0},ou=People' in LDAP Distinguished Name Pattern, I can login with the users under 'People'. But I want to be able to login to Cm with the users from different groups. Wo how to do it? The document does not help at all. Is this a bug?

Re: Cannot use LDAP user to login to Cloudera Manager

New Contributor

What exactly is the meaning of a LDAP user group in Cloudera Manager?

Is it a organization unit? or a posixGroup? or a groupOfNames?

Re: Cannot use LDAP user to login to Cloudera Manager

New Contributor

After several tries, I found out groupOfNames should be the group in Cloudera Managers and it works for me. Now I can login with LDAP users and can filter users based on groups