docker-openldap-fusiondirectory icon indicating copy to clipboard operation
docker-openldap-fusiondirectory copied to clipboard

Published 20 hours ago verified publisher icon tiredofit

hostname env variable

Open tomflenner opened this issue 3 years ago • 4 comments

Hello,

Im not sure about what i need to put in the hostname part of docker-compose.yml, and in the HOSTNAME env variable.

Thanks

tomflenner avatar May 05 '21 20:05 tomflenner

Both my hostname: declaration and HOSTNAME var are the same, for example: ldap.example.com . This is important to have them unique from other installations in the event you wish to enable replication.

tiredofit avatar May 05 '21 21:05 tiredofit

He need to be different from FusionDirectoy container UI right?

I just had a problem due to edit docker-compose and not delete existing conf folders

Thanks !

tomflenner avatar May 05 '21 21:05 tomflenner

Yes so here's how I do it:

I have multiple ldap servers. Their Hostnames are: ldap1.example.com, ldap2.example.com, ldap3.example.com Their container names are ldap1-example-com-app, ldap2-example-com-app

For the Fusiondirectory web interface the hostname is: fd.example.com and the container name is fd-example-com-app. The reason why I am including container names into this example is that you can use this to connect to the LDAP server without having to traverse the internet or use DNS.

But yes, Each container should be named unique.

tiredofit avatar May 05 '21 21:05 tiredofit

please i can't connect to my ldap server. i have this error Fatal error FATAL: Error connecting to LDAP server. The server replied 'Could not bind to cn = admin, dc = madia, dc = local (while operating on LDAP server ldap: // openldap-fusiondirectory-app: 389)'.

Please correct the above error and reload the page

this is my docker-compose version: '3.7' services:

fusiondirectory-app: hostname: fusiondirectory.madia.local container_name: fusiondirectory-app image: fusiondirectory labels: - traefik.enable=true - traefik.frontend.rule=Host:fusiondirectory.madia.local - traefik.port=80 - traefik.docker.network=proxy - traefik.backend=fusiondirectory-app ports: - 80:80 volumes: - fusion_logs:/www/logs #- ./custom:/assets/fusiondirectory #- ./plugins-custom:/assets/plugins-custom environment: - VIRTUAL_HOST=fusiondirectory.madia.local - VIRTUAL_NETWORK=proxy - VIRTUAL_PORT=80 - LETSENCRYPT_HOST=fusiondirectory.madia.local - [email protected]

- ZABBIX_HOSTNAME=fusiondirectory-app

- ENABLE_ARGONAUT=FALSE
- PLUGIN_AUDIT=TRUE
- PLUGIN_DSA=TRUE
- PLUGIN_LDAPDUMP=TRUE
- PLUGIN_LDAPMANAGER=TRUE
- PLUGIN_MAIL=TRUE
- PLUGIN_PERSONAL=TRUE
- PLUGIN_PPOLICY=TRUE
- PLUGIN_SSH=TRUE
- PLUGIN_SUDO=TRUE
- PLUGIN_WEBSERVICE=TRUE

- LDAP1_HOST=openldap-fusiondirectory-app #hostname nom du serveur sur lequel tourne le service openldap-fusiondirectory
- LDAP1_BASE_DN=dc=madia,dc=local
- LDAP1_ADMIN_DN=cn=admin,dc=madia,dc=local
- LDAP1_ADMIN_PASS=admin
- LDAP1_PORT=389
- LDAP1_NAME=Production

#- LDAP2_BASE_DN=dc=example,dc=org
#- LDAP2_ADMIN_DN=cn=admin,dc=example,dc=org
#- LDAP2_HOST=openldap-fusiondirectory2
#- LDAP2_ADMIN_PASS=password2
#- LDAP2_NAME=Development
#- LDAP2_TLS=TRUE
networks:
- proxy
- openldap
restart: always

openldap-fusiondirectory-app: hostname: ldap.madia.local image: tiredofit/openldap-fusiondirectory container_name: openldap-fusiondirectory-app ports: - 389:389 - 636:636 volumes: - backup_openldap:/data/backup - openldap_data:/var/lib/openldap - openldap_config:/etc/openldap/slapd.d - certs:/certs environment: - HOSTNAME=ldap.madia.local
- LOG_LEVEL=256 - DOMAIN=madia.local - BASE_DN=dc=madia,dc=local - ADMIN_PASS=admin - CONFIG_PASS=config

  - FUSIONDIRECTORY_ADMIN_USER=fd-admin
  - FUSIONDIRECTORY_ADMIN_PASS=admin
  - ORGANIZATION=madia Organization
  
  - ENABLE_READONLY_USER=FALSE
  - READONLY_USER_USER=reader
  - READONLY_USER_PASS=reader

  - ENABLE_TLS=FALSE
  #- TLS_CRT_FILENAME=cert.pem
  #- TLS_KEY_FILENAME=key.pem
  #- TLS_ENFORCE=FALSE
  #- TLS_CIPHER_SUITE=ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:RSA+AESGCM:RSA+AES:-DHE-DSS:-RSA:!aNULL:!MD5:!DSS:!SHA
  #- TLS_VERIFY_CLIENT=never
  #- SSL_HELPER_PREFIX=ldap

  - ENABLE_REPLICATION=FALSE
  #- REPLICATION_CONFIG_SYNCPROV=binddn="cn=admin,cn=config" bindmethod=simple credentials="admin" searchbase="cn=config" type=refreshAndPersist retry="60 +" timeout=1
  #- REPLICATION_DB_SYNCPROV=binddn="cn=admin,dc=madia,dc=org" bindmethod=simple credentials="admin" searchbase="dc=madia,dc=local" type=refreshAndPersist interval=00:00:00:10 retry="60 +" timeout=1
  #- REPLICATION_HOSTS=ldap://ldap1.madia.local ldap://ldap2.madia.local ldap://ldap3.madia.local
  #- REMOVE_CONFIG_AFTER_SETUP=FALSE

  #- ENABLE_BACKUP=TRUE
  #- BACKUP_INTERVAL=0400
  #- BACKUP_RETENTION=10080

  - ENABLE_ZABBIX=TRUE                 #activer l'utilisation du serveur zabbix pour la surveillance du service LDAP
  - ZABBIX_HOSTNAME=openldap-fusiondirectory-app # surveillance du bon fonctionnement des différents services et systèmes

networks:
  - openldap
restart: always

networks: proxy: driver: bridge openldap: driver: bridge

volumes: backup_openldap: openldap_data: openldap_config: certs: fusion_logs:

paule1997 avatar May 27 '21 10:05 paule1997