Integrating Kubernetes Deployment with LDAP via jaas Configuration and DataHub User Management Issue

troubleshoot
1

Original Slack Thread

Hello everyone! We managed to integrate our local Kubernetes deployment with our LDAP via jaas configuration. Here is how it looks.

WHZ-Authentication {
com.sun.security.auth.module.LdapLoginModule sufficient
userProvider="ldap://*****.*****.***:389/DC=****,DC=****,DC=eurocontrol,DC==***"
userFilter="(&(|(samAccountName={USERNAME})(userPrincipalName={USERNAME})(cn={USERNAME}))(objectClass=user))"
java.naming.security.principal="CN==****,OU=Users,OU==****,,DC==****,,DC==****,,DC==****,,DC==****,"
java.naming.security.credentials="****"
debug="true"
useSSL="false";
};

The problem we have now, is that the users are not saved in Datahub and we cannot assigned them to groups or give them permissions, etc. For some reason they are not saved in datahub. Note that we kept the datahub user as it has admin rights.

Does anyone encountered this? We are on v.0.11.0

2

Hey there! :wave: Make sure your message includes the following information if relevant, so we can help more effectively!

  1. Which DataHub version are you using? (e.g. 0.12.0)
  2. Please post any relevant error logs on the thread!
3

Hi <@U01T9TUS3NH> , I faced this recently and solved by ingesting users from the LDAP server using the LDAP source.

4

All right, I will give that a go.

5

Ok, that worked! Thanks a lot.

I had to install open ldap dev tools on my RHL client machine.