Open Mrs-Feathers opened 12 months ago
rqi14
commented
11 months ago Did you include those providers in the LDAP outpost? I don’t think it is necessary to use different DC for providers. Maybe it is possible to reuse the same provider for applications?
BeryJu
commented
2 months ago There are no limits to the amount of LDAP providers per outpost/amount of binds per provider. There is also no association with the host's ip or mac address, the LDAP outpost decides which provider a request is routed to based on the Base DN of the provider.
Describe your question/ I'm trying to set up some LDAP Providers. but i need to know the limits of the ldap provider.
Relevant infos ok so, i have some apps. these apps were working just fine with openldap and now i'm switching to authentik for ldap. i figured out through trial and error you need to create a different ldap provider per application as it binds to the host's ip or mac or something, idk. anyway, i made a searchgroup and ldapservice user and use a different DC name for every ldap provider, etc. but for some reason while a couple of these work, its starting to have all the other ones fail. out of frustration i set it up again and only the first 3-4 ldap providers work. so... what are the limits? i know you can only bind one host per provider so i need to use an ldap proxy for SSSD ldap pam logins.. what are the other limits? why do only the first 3 providers work on the outpost why do all the otherones fail with the ldapservice user saying "no permission"... is a ldapsearch group user only limited to 3 binds? what are the limits and how can i find them?
Version and Deployment (please complete the following information):