Unsuccessful AD/LDAP integration for "NAbox-4.0.10.ova" | NetApp | Page 1

silk ibex May 12, 2025, 4:00 PM

#

Hi team,

I am unsuccessfully integrating AD/LDAP with "NAbox-4.0.10.ova". I followed the configuration guide from the below page. My AD team confirmed all provided info was correct but still could not integrate after selecting "Save" button. However, without a test button to test AD/LDAP integration, I don't know if it is something wrong with the box or the info given was incorrect. Is there any LDAP integration fails logs we can check for this OVA? Thanks.

https://nabox.org/documentation/configuration/#ldap-active-directory

plain drift May 12, 2025, 4:03 PM

#

How are you trying to log in ? LDAP integration is only for Grafana, not NAbox admin

silk ibex May 12, 2025, 4:08 PM

#

That is correct. Aftrer setting up for NAbox, loggin into Grafana using AD authenicated username & pw but kept receiving invalid.

#

Here's the provided info by AD team.

plain drift May 12, 2025, 6:03 PM

#

I think some DN fields are very picky regarding spaces after comma.

You can log into Grafana as admin, and go in the ldap test section to see what error you’re getting there.

#

Definitely a test button would be a great help, I’ll add an issue for this.

silk ibex May 12, 2025, 7:41 PM

#

I just removed all the spaces after the comma. Logged into Grafana as admin & tested user mapping and failed. NAbox is pingable to LDAP server though.

plain drift May 13, 2025, 1:20 AM

#

From the screenshot I would have thought there weren’t any spaces

#

Also I think the username alone should be searched for but you probably tried that

silk ibex May 13, 2025, 4:19 AM

#

Yes, I'd tried configuring both with spaces or without & searching with just name or "domain\name" & still not working. Any CLI command to check /var/logs for LDAP configuration issue?

plain drift May 13, 2025, 1:44 PM

#

You can try dc logs -f grafana yes

silk ibex May 14, 2025, 11:16 PM

#

"dc logs -f grafana" was not helpful at all in troubleshooting. Do I have to have SSL configured in order for LADP/AD integration to work? Would checking "Insure TLS" or "STARTTLS" help? Or maybe we can jump on a Teams call to make sure I configured correctly?

plain drift May 15, 2025, 12:28 AM

#

It seems communication is correct and the user is not found. We can do teams next week yes. I’m sending you an invite

jolly bear May 15, 2025, 3:02 AM

#

dc logs wasn't any help?
Did it at least show you that an attempt was being made to connect?
And for the TLS/etc you need to check with your guys to see if that is required on your AD system.
One of our domains is set to require tls/ssl and another one is open (test env for security testing).
NABox works just fine with both of them.

silk ibex May 19, 2025, 5:07 AM

#

@plain drift please help to send over meeting invite on either Monday, Tuesday or Wednesday morning after 8 AM PST so I can forward the invite to AD team as well to have them on the call. Thanks.

plain drift May 19, 2025, 6:09 AM

#

Sorry I forgot to attach recipients

silk ibex May 19, 2025, 5:26 PM

#

@plain drift Thank you very much for your help.

nova jay Jun 3, 2025, 3:54 PM

#

Hello all, was there utlimately solution for this issue? It might help reolve my issue, if the non secret resolution can be shared 🙂

#Unsuccessful AD/LDAP integration for "NAbox-4.0.10.ova"