Can I have multiple LDAP servers?
1,282 views
Skip to first unread message
Anthony Wong
Jan 14, 2013, 1:19:37 PM1/14/13
to repo-d...@googlegroups.com
Hi--
Since it is possible to specify multiple accountbases:
Is it also possible to support multple LDAP servers, like this?
[LDAP]
server = ldap://site1.mycompany.com
server = ldap://site2.mycompany.com
--Thanks,
Anthony
Luca Milanesio
Jan 14, 2013, 1:27:19 PM1/14/13
to Anthony Wong, repo-d...@googlegroups.com
Hi Anthony,
actually LDAP supports federation out-of-the-box, it means that multiple LDAPs can be connected together so that Gerrit can use them.
@GerritForge.com we have done an LDAP extension in Gerrit that allows to use multiple LDAP domains even when they are not "federated" (for a more B2B scenario): once the new auth-backend will be merged into master our implementation will be available as "authentication plugin" on top of Gerrit.
Currently the multi-LDAP domain functionality is available ONLY for the GerritForge product (see http://www.gerritforge.com/download) and cannot be used as plugin.
Luca.
--
To unsubscribe, email repo-discuss...@googlegroups.com
More info at http://groups.google.com/group/repo-discuss?hl=en
Markus Duft
Jun 2, 2016, 5:06:46 AM6/2/16
to Repo and Gerrit Discussion, won...@gmail.com
Hey,
I see this post is quite old. Has something happened in the meantime? I'd really need support to query multiple LDAP servers :)
Cheers,
Markus
Edwin Kempin
Jun 2, 2016, 5:10:31 AM6/2/16
to Markus Duft, Repo and Gerrit Discussion, won...@gmail.com
On Thu, Jun 2, 2016 at 11:06 AM, Markus Duft <duft....@gmail.com> wrote:
Hey,I see this post is quite old. Has something happened in the meantime? I'd really need support to query multiple LDAP servers :)
Gerrit still supports only a single LDAP server.
--
--
To unsubscribe, email repo-discuss...@googlegroups.com
More info at http://groups.google.com/group/repo-discuss?hl=en
---
You received this message because you are subscribed to the Google Groups "Repo and Gerrit Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to repo-discuss...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Markus Duft
Jun 2, 2016, 7:45:36 AM6/2/16
to Repo and Gerrit Discussion, duft....@gmail.com, won...@gmail.com
:(
Any plans to open source/contribute the gerritforge implementation?
Thanks anyway.
Cheers,
Markus
Alex Blewitt
Jun 2, 2016, 7:54:57 AM6/2/16
to Markus Duft, Repo and Gerrit Discussion, won...@gmail.com
It's possible to set up a 3rd LDAP server and then use that to delegate to the other two. You can use that today.
Alex
Sent from my iPhat 6
Sent from my iPhat 6
Will Saxon
Jun 2, 2016, 11:15:00 AM6/2/16
to Repo and Gerrit Discussion, duft....@gmail.com, won...@gmail.com
Yes, depending on what you have available, you could investigate either slapd-meta[0][1] or MS ADAM/AD-LDS[2].
-Will
We're using AD LDS as most of our developers are Windows users with accounts in different LDAP instances (AD forests). It works very well with Gerrit, the only caveat is that you have to pay attention to name conflicts, and at least in our implementation you end up with userProxy objects so your user account filter has to be different.
I'm sure there are other merged directory implementations as well. Any of them that provide an LDAP interface should work.
-Will
shang...@gmail.com
Mar 22, 2021, 11:15:42 AM3/22/21
to Repo and Gerrit Discussion
Hi,
I see this post is really old, after 7 years passed, is Gerrit supporting multi LDAP now?
Thanks
Luca Milanesio
Mar 22, 2021, 12:17:38 PM3/22/21
to shang...@gmail.com, Luca Milanesio, Repo and Gerrit Discussion
On 22 Mar 2021, at 15:15, shang...@gmail.com <shang...@gmail.com> wrote:Hi,I see this post is really old, after 7 years passed, is Gerrit supporting multi LDAP now?
You can have multiple LDAP servers (replicas) but not multi LDAP domains.
What is your use-case?
Luca.
To view this discussion on the web visit https://groups.google.com/d/msgid/repo-discuss/6028b120-356a-42d4-8739-e28c95bedd00n%40googlegroups.com.
Nuno Costa
Mar 23, 2021, 5:46:45 AM3/23/21
to Repo and Gerrit Discussion
We are using multiple LDAP replicas with gerrit.config ldap.server=ldap://server1 ldap://server2
shang...@gmail.com
Mar 23, 2021, 10:17:08 AM3/23/21
to Repo and Gerrit Discussion
Hi Nuno,
Which Gerrit version are you using? I checked the document of Gerrit 2.16.27 and did not find it support multi LDAP.
shang...@gmail.com
Mar 23, 2021, 10:38:07 AM3/23/21
to Repo and Gerrit Discussion
Hi Luca,
Thank you for your reply.
In Our company, there are an LDAP server and Rover system, some team will set up a Rover group and hope our Gerrit support Rover group as well.
About the Rover system, I can not find more information on the internet, It should be an internal tool. so I can not tell you more about it. Please ignore my question.
Many thanks.
Luca Milanesio
Mar 23, 2021, 10:41:13 AM3/23/21
to shang...@gmail.com, Luca Milanesio, Repo and Gerrit Discussion
On 23 Mar 2021, at 14:38, shang...@gmail.com <shang...@gmail.com> wrote:
Hi Luca,Thank you for your reply.In Our company, there are an LDAP server and Rover system, some team will set up a Rover group and hope our Gerrit support Rover group as well.About the Rover system, I can not find more information on the internet, It should be an internal tool. so I can not tell you more about it. Please ignore my question.
Gotcha, and yes, Gerrit cannot support your internal group system unless you write a plugin for it, which is possible.
Luca.
To view this discussion on the web visit https://groups.google.com/d/msgid/repo-discuss/77480b36-b657-4a29-a7f5-dc9cb1fc4df9n%40googlegroups.com.
Nuno Costa
Mar 23, 2021, 11:23:24 AM3/23/21
to Repo and Gerrit Discussion
We have some instances in 2.16.17 and .22 in migration process to 3.2.7 but using single domain.
Reply all
Reply to author
Forward
0 new messages