Open Mrs-Feathers opened 12 months ago
Did you include those providers in the LDAP outpost? I don’t think it is necessary to use different DC for providers. Maybe it is possible to reuse the same provider for applications?
There are no limits to the amount of LDAP providers per outpost/amount of binds per provider. There is also no association with the host's ip or mac address, the LDAP outpost decides which provider a request is routed to based on the Base DN of the provider.
Describe your question/ I'm trying to set up some LDAP Providers. but i need to know the limits of the ldap provider.
Relevant infos ok so, i have some apps. these apps were working just fine with openldap and now i'm switching to authentik for ldap. i figured out through trial and error you need to create a different ldap provider per application as it binds to the host's ip or mac or something, idk. anyway, i made a searchgroup and ldapservice user and use a different DC name for every ldap provider, etc. but for some reason while a couple of these work, its starting to have all the other ones fail. out of frustration i set it up again and only the first 3-4 ldap providers work. so... what are the limits? i know you can only bind one host per provider so i need to use an ldap proxy for SSSD ldap pam logins.. what are the other limits? why do only the first 3 providers work on the outpost why do all the otherones fail with the ldapservice user saying "no permission"... is a ldapsearch group user only limited to 3 binds? what are the limits and how can i find them?
Version and Deployment (please complete the following information):