mirror of
https://github.com/grafana/grafana.git
synced 2024-11-22 08:56:43 -06:00
49 lines
1.3 KiB
TOML
49 lines
1.3 KiB
TOML
# Set to true to log user information returned from LDAP
|
|
verbose_logging = false
|
|
|
|
[[servers]]
|
|
# Ldap server host
|
|
host = "127.0.0.1"
|
|
# Default port is 389 or 636 if use_ssl = true
|
|
port = 389
|
|
# Set to true if ldap server supports TLS
|
|
use_ssl = false
|
|
# set to true if you want to skip ssl cert validation
|
|
ssl_skip_verify = false
|
|
# if cert validation is enabled, provide ldap cert server name
|
|
ssl_server_name = ""
|
|
|
|
# Search user bind dn
|
|
bind_dn = "cn=admin,dc=grafana,dc=org"
|
|
# Search user bind password
|
|
bind_password = "grafana"
|
|
|
|
# Search filter, for example "(cn=%s)" or "(sAMAccountName=%s)"
|
|
search_filter = "(cn=%s)"
|
|
# An array of base dns to search through
|
|
search_base_dns = ["dc=grafana,dc=org"]
|
|
|
|
# Specify names of the ldap attributes your ldap uses
|
|
[servers.attributes]
|
|
name = "givenName"
|
|
surname = "sn"
|
|
username = "cn"
|
|
member_of = "memberOf"
|
|
email = "email"
|
|
|
|
# Map ldap groups to grafana org roles
|
|
[[servers.group_mappings]]
|
|
group_dn = "cn=admins,dc=grafana,dc=org"
|
|
org_role = "Admin"
|
|
# The Grafana organization database id, optional, if left out the default org (id 1) will be used
|
|
# org_id = 1
|
|
|
|
[[server.ldap_group_to_org_role_mappings]]
|
|
group_dn = "cn=users,dc=grafana,dc=org"
|
|
org_role = "Editor"
|
|
|
|
[[servers.group_mappings]]
|
|
# If you want to match all (or no ldap groups) then you can use wildcard
|
|
group_dn = "*"
|
|
org_role = "Viewer"
|