Minio LDAP Integration
-
Minio auth configuration seems to be rather awkward. It appears to have pretty decent support for LDAP authentication: https://github.com/minio/minio/blob/master/docs/sts/ldap.md
Do you think it would be a good idea to enable this?
-
Agree. I am all for this. The more services I can use with LDAP, the better.
-
Digging deeper I found this issue - https://github.com/minio/minio/issues/9837 . From there, I found that there is another admin UI for minio (?) - https://github.com/minio/console which looks way better than the current one. It's unclear to me why these are separate projects and how they are tied together.
There's some LDAP setup docs at https://github.com/minio/console/blob/master/DEVELOPMENT.md . Also this blog post - https://blog.min.io/new-minio-console/
-
@girish Wow that console UI looks great. Based on the publish date of that article and the current release tag on the console (0.7.0) it seems that it's a pretty new project. As far as being separate I can imagine wanting to have a very lightweight UI for the storage device itself and running the full-featured UI separately, especially if they're targeting k8s-like deployments.
-
"Youโre one docker pull and three minutes of configuration away from a browser-based interface that taps into the most powerful features of the MinIO storage suite."
Nice find! Just "three minutes" work then
-
@atrilahiji said in Minio LDAP Integration:
The more services I can use with LDAP, the better.
Agreed.
(And I still really want to be able to filter the app store by LDAP support and for Discourse and NodeBB to have LDAP added
)@girish said in Minio LDAP Integration:
From there, I found that there is another admin UI for minio (?) - https://github.com/minio/console which looks way better than the current one. It's unclear to me why these are separate projects and how they are tied together.
There's some LDAP setup docs at https://github.com/minio/console/blob/master/DEVELOPMENT.md . Also this blog post - https://blog.min.io/new-minio-console/It would be awesome to have this lovely new Minio GUI available in Cloudron!
-
@girish Huh... are you going to just update the current app or make a v2 app and keep the old one around?
-
@infogulch
Hi
we have LDAP username ,password and ldap server details and need to integrate with minio in kubernets cluster
Could you please guide me , where to setup in minio server and we have below data but i am not understanding ,in which location of minio server , need to setup and after setting the ldap details, where to find in minio server.export MINIO_IDENTITY_LDAP_SERVER_ADDR=myldapserver.com:636
export MINIO_IDENTITY_LDAP_USERNAME_FORMAT="uid=%s,cn=accounts,dc=myldapserver,dc=com"
export MINIO_IDENTITY_LDAP_GROUP_SEARCH_BASE_DN="dc=myldapserver,dc=com"
export MINIO_IDENTITY_LDAP_GROUP_SEARCH_FILTER="(&(objectclass=groupOfNames)(memberUid=%s)$)"
export MINIO_IDENTITY_LDAP_STS_EXPIRY=60h
export MINIO_IDENTITY_LDAP_TLS_SKIP_VERIFY=onhttps://github.com/minio/minio/blob/master/docs/sts/ldap.md--- could not help me much.
Thanks,
-
This post is deleted!
-
@baswaraj wrong community. Ask the minio devs.
-
I am currently checking whats going on with LDAP and the new console.
https://git.cloudron.io/cloudron/minio-app/-/merge_requests/2
