public inbox for [email protected]
help / color / mirror / Atom feedFrom: Sam Stearns <[email protected]>
To: Achilleas Mantzios - cloud <[email protected]>
Cc: [email protected]
Subject: Re: How To Configure PostgreSQL to Use LDAP for Authentication
Date: Fri, 20 Dec 2024 07:08:31 -0800
Message-ID: <CAN6TVj=W2YJLKd39RDhQsHG-eK2tG-ufb4d99RQKZUDwwxcBYg@mail.gmail.com> (raw)
In-Reply-To: <[email protected]>
References: <CABHPps4FeMPPqm36+SnhW67HKd=f1wcsZGxES6w=Ay6O5YQKNQ@mail.gmail.com>
<[email protected]>
Yes, we got this working by formatting the pg_hba.conf entry correctly.
Thanks!
On Fri, Dec 20, 2024 at 12:33 AM Achilleas Mantzios - cloud <
[email protected]> wrote:
> On 12/6/24 16: 15, Henry Ashu wrote: Hi, Please, I need help with how to
> configure postgresql to use LDAP for Authentication. Here is what I have
> tried; host all all 0. 0. 0. 0/0 ldap ldapserver=ldap: //adserver. domain.
> com ldapport=389 ldapprefix="DOMAIN\"
> ZjQcmQRYFpfptBannerStart
> This Message Is From an Untrusted Sender
> You have not previously corresponded with this sender.
>
> ZjQcmQRYFpfptBannerEnd
>
>
> On 12/6/24 16:15, Henry Ashu wrote:
>
> Hi,
>
> Please, I need help with how to configure postgresql to use LDAP for
> Authentication.
>
> *Here is what I have tried;*
>
> host all all 0.0.0.0/0 ldap ldapserver=ldap://adserver.domain.com
> ldapport=389 ldapprefix="DOMAIN\" ldapsuffix="" ldapbinddn=
> [email protected] ldapbindpasswd=mypassword
>
>
> host all all 0.0.0.0/0 ldap
> ldapurl="ldaps://adserver.domain.com:636"
> ldapbasedn="OU=Users,OU=England 053,OU=Commercial
> Services,DC=domain,DC=com" ldapbinddn="[email protected]"
> ldapbindpasswd="mypassword" ldapsearchattribute="OU=Users,OU=England
> 053,OU=Commercial Services,DC=domain,DC=com"
>
>
>
> host all all 0.0.0.0/0 ldap
> ldapserver="adserver.domain.com" ldapport=636 ldapscheme="ldaps"
> ldapbasedn="OU=Users,OU=England 053,OU=Commercial
> Services,DC=domain,DC=com" ldapbinddn="OU=Users,OU=England
> 053,OU=Commercial Services,DC=domain,DC=com"
> ldapbindpasswd="mypassword" ldapsearchattribute="adservice-account"
>
>
> *And this is the error I'm getting;*
>
> [postgres@myserver ~]$ psql -U myuser mydatabase
> psql: error: connection to server on socket
> "/run/postgresql/.s.PGSQL.5432" failed: FATAL: no pg_hba.conf entry for
> host "[local]", user "myuser", database "mydatabase", no encryption
> [postgres@myserver ~]$ psql -U "MYDOMAIN\myuser" mydatabase
> psql: error: connection to server on socket
> "/run/postgresql/.s.PGSQL.5432" failed: FATAL: no pg_hba.conf entry for
> host "[local]", user "MYDOMAIN\myuser", database "mydatabase", no encryption
>
> Fix your pg_hba.conf, LDAP is the least of your problems.
>
> Thank you
>
> *Henry Ashu*
>
> Database Administrator
> *o:* 503.672.5114 | *f:* 800.551.8821 | DAT.com
> [image: DAT Solutions] <https://www.dat.com/; [image: Like us on
> Facebook] <https://www.facebook.com/loadboards; [image: Follow us on
> Twitter] <https://twitter.com/loadboards; [image: Connect with us on
> LinkedIn] <https://www.linkedin.com/company/datsolutions; [image: Visit
> our YouTube Channel] <https://www.youtube.com/datloadboards; [image:
> Visit us on Instagram] <https://instagram.com/dat_solutions;
>
>
--
*Samuel Stearns*
Lead Database Administrator
*c:* 971 762 6879 | *o:* 503 672 5115 | DAT.com
[image: DAT]
<https://www.dat.com/?utm_medium=email&utm_source=DAT_email_signature_link;
view thread (3+ messages)
reply
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Reply to all the recipients using the --to and --cc options:
reply via email
To: [email protected]
Cc: [email protected], [email protected], [email protected]
Subject: Re: How To Configure PostgreSQL to Use LDAP for Authentication
In-Reply-To: <CAN6TVj=W2YJLKd39RDhQsHG-eK2tG-ufb4d99RQKZUDwwxcBYg@mail.gmail.com>
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
This inbox is served by agora; see mirroring instructions
for how to clone and mirror all data and code used for this inbox