LDAP SERVER#
功能介绍#
ldap协议插件,因协议特殊性需配合arkid_ldap_server服务端 版本:2.5.x来实现协议功能
本插件仅以arkid数据为基础,实现LDAP协议的认证与搜索功能。
配置指南#
arkid_ldap_server服务端部署#
联系管理员或运维工作人员确认已完成arkid_ldap_server服务端 版本:2.5.x的部署,或参考下列文档自行部署:
- 创建ldap所需的yaml文件
---
apiVersion: v1
kind: Service
metadata:
name: arkid-ldapjs
spec:
type: NodePort
ports:
- name: ldap
nodePort: 32581
port: 389
protocol: TCP
targetPort: 1389
selector:
app.kubernetes.io/instance: arkid
app.kubernetes.io/name: arkid-ldapjs
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: arkid-ldapjs
spec:
selector:
matchLabels:
app.kubernetes.io/instance: arkid
app.kubernetes.io/name: arkid-ldapjs
template:
metadata:
labels:
app.kubernetes.io/instance: arkid
app.kubernetes.io/name: arkid-ldapjs
spec:
containers:
- env:
- name: TZ
value: Asia/Shanghai
- name: BEURL
value: http://dev-arkidv2-be
image: registry.cn-zhangjiakou.aliyuncs.com/ark-releases/ldapjs:latest
imagePullPolicy: IfNotPresent
name: arkid-ldapjs
resources: {}
initContainers:
- command:
- sh
- -c
- sysctl -w net.core.somaxconn=65535
image: busybox
imagePullPolicy: Always
name: setsysctl
resources: {}
securityContext:
privileged: true
可能需要修改的地方
- k8s 安装ldap,安装在arkid 所在的命名空间中