Has anyone had success with getting this to work?
So far I have been unsuccessful, though I can't find anything in the logs to indicated why and I don't get any errors during the install. The AD environment I'm pointing at has over 1000 users, so I have created a group in AD and added a couple of test users to is. I am then using a filter when configuring LDAP to only add users into OpenStack that are part of this group. The filter is: (memberof=CN=vio-users,OU=Groups,DC=blah,DC=int) With this filter I get past the LDAP configuration screen and the install goes to completion. At this point the documentation says to do the following:
"After adding a new LDAP authentication source, the cloud administrator (i.e. "admin") under "local" domain should grant "admin" role to LDAP admin users/groups and "_member_" role to standard users/groups."
When I login to my installed Openstack environment as the admin user in the local domain and try to do this, I don't find and LDAP users. I also don't have the option to Add any local users. If I click on 'Domains' I kind of expected to find a domain for my LDAP directory, but I only see the 'local' domain. I have looked through most of the logs on the management, compute, and controlplane boxes and haven't found anything. I have also used LDP to verify that my ldap filter does work and returns the two users I have placed into it.
Anyone have any thoughts?
Thanks,
Mark.