Case 1: Use LDAP docker service.

Prerequest: Put user ldif file into folder

• Create folder:

  $ mkdir /tmp/ldap
  $ vim /tmp/ldap/all.ldif
  

• Put ldif file information into file.

  • /tmp/ldap/infuseai.ldif

Step 1: Setup LDAP Server

1. Create openldap server

   $ docker run --name ldap -p 10389:389 -d \\
   	-v /tmp/ldap:/tmp/ldap:ro \\
   	-e LDAP_ORGANISATION="InfuseAI Inc" \\
   	-e LDAP_DOMAIN="infuseai.io" \\
   	osixia/openldap:1.5.0
   

2. Add user information:

   docker exec -ti ldap ldapadd -x -H ldap://localhost -D "cn=admin,dc=infuseai,dc=io" -w admin -f /tmp/ldap/infuseai.ldif
   

Step 2: Setup User Federation

1. Once in Primehub realm, click on User Federation, and click Add Provider. On the next page ("Required Settings"), set the following:

   • Edit Mode : Writeable
   • Vendor : Other
   • Connection URL : ldap://<external-ip>:10389
   • Users DN : ou=users,dc=infuseai,dc=io
   • Authentication Type : simple
   • Bind DN : cn=admin,dc=infuseai,dc=io
   • Bind Credential : admin

   

2. When save the setting, you can synchronize all users.

   

3. You can see the user list in Manage > Users functions.

   

Reference:

OpenLDAP - Funky Penguin's Geek Cookbook

Case 2: Use windows AD Server.

1. In the Configure menu on the left, select User Federation to display the entry dialog.

2. In the drop-down menu, select ldap.

3. Enter your ldap configuration according to the following table:

   ldap - windows AD setting in Keycloak

   

4. Save your settings and you can see the result in Manage > Users functions.