Thursday, December 26, 2024
Google search engine
HomeSecurity & TestingIntegrate Harbor Registry With LDAP for user Authentication
Security & Testing

Integrate Harbor Registry With LDAP for user Authentication

Nango Kala
By Nango Kala
0
0
.tdi_3.td-a-rec{text-align:center}.tdi_3 .td-element-style{z-index:-1}.tdi_3.td-a-rec-img{text-align:left}.tdi_3.td-a-rec-img img{margin:0 auto 0 0}@media(max-width:767px){.tdi_3.td-a-rec-img{text-align:center}}

After installing Harbor registry server, the next action is probably proper user management. The standard user Authentication method in most companies is LDAP/AD. It is not justified to manage a separate user database for Harbor authentication if you have LDAP server in use.

This guide will discuss how you can configure LDAP backend as a database for user authentication in harbor. The pre-requisites for this setup are:

In my setup, I use FreeIPA Identity Management platform. For Windows Active directory, refer to:

.tdi_2.td-a-rec{text-align:center}.tdi_2 .td-element-style{z-index:-1}.tdi_2.td-a-rec-img{text-align:left}.tdi_2.td-a-rec-img img{margin:0 auto 0 0}@media(max-width:767px){.tdi_2.td-a-rec-img{text-align:center}}

Installation guides are available on our website.

Step 1: Create Bind User on LDAP

Access your LDAP server and create a user account that will be used on Harbor to bind to the server.

harbor ldap integration 01

Step 2: Configure LDAP Authentication on Harbor

Now access Harbor admin dashboard and navigate to Administration > Configuration > Authentication

Change your settings like below.

Auth Mode: LDAP
LDAP URL: ldap.example.com
LDAP Search DN: uid=service,cn=users,cn=accounts,dc=example,dc=com
LDAP Search Password: LDAP-Bind-User-Password
LDAP Base DN: cn=users,cn=accounts,dc=example,dc=com
LDAP UID: uid

And other values e.g for Group to suit your environment and desired authentication model. In my configuration, I’ve set:

Auth Mode: Set authentication mode to LDAP
LDAP URL: LDAP Server URL
LDAP Search DN: DN for user with permissions to search LDAP server.
LDAP Search Password: Search user password
LDAP Base DN: The base DN from which to lookup a user
LDAP UID: Attribute used in a search to match a user

When done, click “TEST LDAP SERVER” button to validate settings.

harbor ldap integration 02

If the connection is successful, you’ll get this message.

harbor ldap integration 03

Test login on Harbor web portal to confirm users on LDAP can access the service.

harbor ldap integration 04

Input LDAP username and password to access Harbor dashboard.

harbor ldap integration 05

You need to authenticate to access Harbor registry on Docker machine.

$ docker login reg1.example.com
Authenticating with existing credentials...
Existing credentials are invalid, please enter valid username and password
Username: neveropen
Password: <LDAPPassword>
Login Succeeded!

We have confirmed we can access Harbor resources with LDAP credentials.

.tdi_4.td-a-rec{text-align:center}.tdi_4 .td-element-style{z-index:-1}.tdi_4.td-a-rec-img{text-align:left}.tdi_4.td-a-rec-img img{margin:0 auto 0 0}@media(max-width:767px){.tdi_4.td-a-rec-img{text-align:center}}

Previous article
Set Default Login Shell on SSSD for AD users using FreeIPA
Next article
Best CEH Certification Preparation Books for 2023
Nango Kala
Nango Kala
RELATED ARTICLES

Most Popular

Load more

Recent Comments

강서구출장마사지 on How to store XML data into a MySQL database using Python?
금천구출장마사지 on How to store XML data into a MySQL database using Python?
nightwish.southeast.cz on Google says it won’t keep your Pixel during a repair if you’re caught using non-OEM parts
광명출장안마 on How to store XML data into a MySQL database using Python?
광명출장안마 on How to store XML data into a MySQL database using Python?
출장오피 on How to store XML data into a MySQL database using Python?
부천출장안마 on How to store XML data into a MySQL database using Python?
구월동출장안마 on How to store XML data into a MySQL database using Python?
강서구출장안마 on How to store XML data into a MySQL database using Python?
헬로출장 on How to store XML data into a MySQL database using Python?
오산출장안마 on How to store XML data into a MySQL database using Python?
광명출장마사지 on How to store XML data into a MySQL database using Python?
마포출장 on How to store XML data into a MySQL database using Python?
안양출장마사지 on How to store XML data into a MySQL database using Python?
gKTdhA on 5 reasons why I won’t switch away from Google Photos
부천출장안마 on How to store XML data into a MySQL database using Python?
동탄출장안마 on How to store XML data into a MySQL database using Python?
0a1Mq7 on Wander: An add-on for Apple’s Shortcuts app to install the Odyssey jailbreak
서울출장안마 on How to store XML data into a MySQL database using Python?
분당출장안마 on How to store XML data into a MySQL database using Python?
부천출장안마 on How to store XML data into a MySQL database using Python?
출장 오피 on How to store XML data into a MySQL database using Python?
화곡동출장마사지 on How to store XML data into a MySQL database using Python?
Gilda on Wander: An add-on for Apple’s Shortcuts app to install the Odyssey jailbreak
강서구출장마사지 on How to store XML data into a MySQL database using Python?
고양출장안마 on How to store XML data into a MySQL database using Python?
화성출장마사지 on How to store XML data into a MySQL database using Python?
천호동출장마사지 on How to store XML data into a MySQL database using Python?
June P. D. Alvarez on RedSn0w Updated to Fix iBooks DRM Issues
Litha on How to Install Siri on iPad 2

EDITOR PICKS

POPULAR POSTS

POPULAR CATEGORY

ABOUT US

Newspaper is your news, entertainment, music fashion website. We provide you with the latest breaking news and videos straight from the entertainment industry.

Contact us: hello@geeksforgeeks.org

FOLLOW US

© Lazyr0ar 2022