Unable to find user in LDAP server

rohit22unix · May 28, 2020, 3:29pm

Hi, I am using Grafana 2.7.2 and setting to my company LDAP server. I am getting the below error.
Any help is appreciated.

t=2020-05-28T15:21:47+0000 lvl=eror msg=“No user was found in the LDAP server(s) with that username” logger=context userId=1 orgId=1 uname=admin error=“LDAP Result Code 1 “Operations Error”: 000004DC: LdapErr: DSID-0C090766, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v1773” remote_addr=10.197.207.51
t=2020-05-28T15:21:47+0000 lvl=info msg=“Request Completed” logger=context userId=1 orgId=1 uname=admin method=GET path=/api/admin/ldap/44127693 status=404 remote_addr=10.197.207.51 time_ms=1485 size=72 referer=http://hkl20103900.hc.cloud.hk.hsbc:3000/admin/ldap

Below is my custom.ini and ldap.toml

cat custom.ini
#################################### Auth LDAP ##########################
[auth.ldap]
enabled = true
config_file = /hss_unix/ldap.toml
allow_sign_up = true
[log]
filters = ldap:debug

cat /hss_unix/ldap.toml

To troubleshoot and get more log info enable ldap debug logging in grafana.ini

[log]

filters = ldap:debug

[[servers]]

Ldap server host (specify multiple hosts space separated)

host = “glue.systems.uk.hsbc”

Default port is 389 or 636 if use_ssl = true

port = 3269

Set to true if ldap server supports TLS

use_ssl = true

Set to true if connect ldap server with STARTTLS pattern (create connection in insecure, then upgrade to secure connection with TLS)

start_tls = false

set to true if you want to skip ssl cert validation

ssl_skip_verify = true

set to the path to your root CA certificate or leave unset to use system defaults

root_ca_cert = “/hss_unix/tools/grafana-6.7.2/conf/root.cer”

Authentication against LDAP servers requiring client certificates

client_cert = “/path/to/client.crt”

client_key = “/path/to/client.key”

Search user bind dn

bind_dn = “cn=%s,o=HSBCPeople,dc=InfoDir,dc=Prod,dc=HSBC”

Search user bind password

If the password contains # or ; you have to wrap it with triple quotes. Ex “”"#password;"""

search_filter = “(&(|(objectclass=userproxy)(objectclass=user))(|(employeeID=%s)(hsbc-ad-SAMAccountName=%s)))”

search_base_dns = [“DC=InfoDir,DC=Prod,DC=HSBC”]

[servers.attributes]
username=“employeeID”
email=“mail”
surname=“hsbc-ad-KnownAsLastName”
name=“hsbc-ad-KnownAsGivenName”

Topic		Replies	Views
LDAP in Grafana Portal - Need help to complete the	0	211	October 29, 2020
Grafana with ldap "Cannot authentificate admin user in LDAP" error Configuration ldap	2	5250	January 3, 2022
LDAP configuration issue : Unable to configure LDAP ldap	1	2567	February 24, 2021
Help mapping AD users to Grafana Grafana ldap	0	901	June 18, 2020
LDAP configuration Configuration	1	1915	November 2, 2018