Integrate ldap with kibana

Hi Team,

Recently, I have configured ELK stack with x-pack security enabled. it is working fine now, now I wanted to extend security by integrating kibana with ldap. Could you help us how to integrate ldap with kibana. The current version of EFK is 7.5.2 and I created PEM encoded certificates as per document for xpack security with some CN. Is there any relation between PEM encoded certificates and LDAP configuration and authentication.

Thanks,
Kasim Shaik

LDAP integration happens through elasticsearch, you can start by taking a look at our documentation , starting in https://www.elastic.co/guide/en/elasticsearch/reference/current/ldap-realm.html.

No, not really, at least not in the generic context you are asking this question.

Why I asked question about certificates in ldap configuraito, the certificates (PEM) were created with some generic name (CN ), i was under assumption, these PEM encoded certificates must match or must be aligned with ldap server name.

No, the subject and SANs of kibana and elasticsearch certificates do not need to match the hostname of your LDAP server. These are unrelated

@ikakavas, thanks for clarifying my query in detail.

While I was going through the link, which you forwarded, I noticed at one place , set password for bind_dn user, which user password it is?

The password for the bind_dn user should be configured by adding the appropriate secure_bind_password setting to the Elasticsearch keystore. For example, the following command adds the password for the example realm above:

bin/elasticsearch-keystore add \
xpack.security.authc.realms.ldap.ldap1.secure_bind_password

@ikakavas, I am waiting for your reply. which user password it is ? is it a password of user on LDAP server ?

Please be patient in waiting for responses to your question and refrain from pinging multiple times asking for a response or opening multiple topics for the same question. This is a community forum, it may take time for someone to reply to your question. For more information please refer to the Community Code of Conduct specifically the section "Be patient". Also, please refrain from pinging folks directly, this is a forum and anyone that participates might be able to assist you.

If you are in need of a service with an SLA that covers response times for questions then you may want to consider talking to us about a subscription.

Someone will get back to you once they have the time to do so.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.