[Check_mk (english)] Importing usernames and email from FreeIPA into WATO

Jam Mulch spammagnet10 at gmail.com
Thu Jul 28 17:45:30 CEST 2016

You should probably get your friendly neighborhood LDAP guru to do a 
sanity check on your ldap connection settings.

On 07/28/2016 11:29 AM, Stephen Berg (Contractor) wrote:
> I tried "email" and "mail" neither one resulted in the field being 
> populated.  I double checked from the server side:
> ipa user-show --all --raw berg | grep -i mail
>   mail: stephen.berg.ctr at nrlssc.navy.mil
> The field is definitely there and correct, but the LDAP settings won't 
> pull it from the server for some reason.
> *Jam Mulch*  >
>> On mine, it's:
>> WATO - Configuration -> Users -> LDAP Connections -> 'edit' -> Attribute
>> Sync Plugins -> [checkbox] Email address -> [checkbox] LDAP attribute to
>> sync, and the field value for our ldap is 'mail'.
> On 07/27/2016 11:53 AM, Stephen Berg (Contractor) wrote:
>> Just about finished rebuilding a master and seven slave servers using 
>> WATO this time around.  I've got the LDAP connector pulling in a 
>> subset of user accounts and clicked the check box under "LDAP 
>> Attribute Sync Plugins" so each users "email" field will get imported 
>> but that column in the Users page never gets updated.
>> I've set Directory Type to OpenLDAP. Defined our main FreeIPA server 
>> and four failover servers.  When I click on "Save & Test" everything 
>> comes up with green check marks under State. In the "Sync-Plugin: 
>> Roles" section I see "Skipping this test (Plugin is not enabled)"
>> Can't seem to find where or how to get email addresses pulled from LDAP.

More information about the checkmk-en mailing list