LDAP is not working

18 views
Skip to first unread message

Laxmikant Pandhare

unread,
Mar 4, 2026, 2:14:13 AM (5 days ago) Mar 4
to Druid User
Hi Team,

Below are my configs for LDAP and it is failing 401 Unauthorized

########################################

# AUTHENTICATION — LDAP

########################################

druid.auth.authenticatorChain=["ldap"]


druid.auth.authenticator.ldap.type=basic

druid.auth.authenticator.ldap.enableCacheNotifications=true


druid.auth.authenticator.ldap.credentialsValidator.type=ldap

druid.auth.authenticator.ldap.credentialsValidator.url=ldaps://LDAP_SERVER.xyz.com:636

druid.auth.authenticator.ldap.credentialsValidator.bindUser=AD_AC...@xyz.com

druid.auth.authenticator.ldap.credentialsValidator.bindPassword={"type":"environment","variable":"AD_ACCOUNT_PASSWORD"}

druid.auth.authenticator.ldap.credentialsValidator.baseDn=DC=abc,DC=xyz,DC=COM

druid.auth.authenticator.ldap.credentialsValidator.userSearch=(&(sAMAccountName=%s)(objectClass=user))

druid.auth.authenticator.ldap.credentialsValidator.userAttribute=sAMAccountName


########################################

# AUTHORIZATION — LDAP (NEW NAME)

########################################

druid.auth.authenticator.ldap.authorizerName=ldapauth

druid.auth.authorizers=["ldapauth"]


druid.auth.authorizer.ldapauth.type=basic

druid.auth.authorizer.ldapauth.initialAdminUser=AD_ACCOUNT

druid.auth.authorizer.ldapauth.initialAdminRole=admin

druid.auth.authorizer.ldapauth.roleProvider.type=ldap


########################################

# SYNC RETRIES

########################################

druid.auth.basic.common.maxSyncRetries=20


druid.escalator.authorizerName=ldapauth


########################################

# INTERNAL DRUID SERVICE AUTH (REQUIRED)

########################################

druid.escalator.type=basic


druid.escalator.internalClientUsername=AD_ACCOUNT

druid.escalator.internalClientPassword={"type":"environment","variable":"AD_ACCOUNT_PASSWORD"}



Below is the error

curl -v -k -u ’AD_ACCOUNT:AD_ACCOUNT_PASSWORD' https://coordinator.xyz.com:8281/status

*   Trying IP…

* TCP_NODELAY set

* Connected to coordinator.xyz.com (IP) port 8281 (#0)

<html>

<head>

<meta http-equiv="Content-Type" content="text/html;charset=ISO-8859-1"/>

<title>Error 401 Unauthorized</title>

</head>

<body><h2>HTTP ERROR 401 Unauthorized</h2>

<table>

<tr><th>URI:</th><td>/status</td></tr>

<tr><th>STATUS:</th><td>401</td></tr>

<tr><th>MESSAGE:</th><td>Unauthorized</td></tr>

</table>


</body>

</html>

* Connection #0 to host coordinator.xyz.com left intact


Any suggestions please?

Reply all
Reply to author
Forward
0 new messages