Has anyone successfully connected to the google cloud identity ldap service?
It supports user/pass creds but the docs seem to imply that the cert is also required
In addition to authenticating with a certificate, some LDAP clients require that you enter a username and password. If the username and password fields are not mandatory, you can skip this step.
I don’t see any way to use the cert in eramba.
I worked around this by setting up stunnel on the eramba server, eg:
/etc/stunnel/google-ldap.conf:
debug = 5
output = /var/run/stunnel4/google-ldap.log
[ldap]
client = yes
accept = localhost:1636
connect = ldap.google.com:636
cert = /etc/stunnel/google-ldap.cert
key = /etc/stunnel/google-ldap.key
You still need to create a user/pass in google LDAP admin and use those in eramba.
See https://support.google.com/cloudidentity/answer/9089736?hl=en
Being a full LDAP novice, can anybody recommend the group connection LDAP Group Settings for for google-ldap?
https://support.google.com/cloudidentity/answer/9188164?hl=en&ref_topic=9048334