autch:
ldap:
description: "Authenticate via LDAP or Active Directory"
http_enabled: true
transport_enabled: true
order: 1
http_authenticator:
type: basic
challenge: true
authentication_backend:
# LDAP authentication backend (authenticate users against a LDAP or Active Directory)
type: ldap
config:
# enable ldaps
enable_ssl: false
# enable start tls, enable_ssl should be false
enable_start_tls: false
# send client certificate
enable_ssl_client_auth: false
# verify ldap hostname
verify_hostnames: true
hosts:
- ******:389
bind_dn: cn=WAZUH corporativo,ou=WAZUH,ou=DTI - Contas de Serviços,ou=Usuários **,ou=*****,ou=**,dc=***,dc=***
password: ***************
userbase: 'ou=Usuários **,ou=******,ou=**,dc=***,dc=***'
# Filter to search for users (currently in the whole subtree beneath userbase)
# {0} is substituted with the username
usersearch: '(sAMAccountName={0})'
# Use this attribute from the user as username (if not set then DN is used)
username_attribute: null
Em terça-feira, 2 de julho de 2024 às 13:05:45 UTC-4, Thaynara Soares escreveu: