Authentication using AD

Breandan Dezendorf breandan at
Thu Feb 3 19:57:39 CET 2011

For simple binds of AD to Nagios:

<Directory /var/www/tools-bin>
        AllowOverride AuthConfig
        Order Allow,Deny
        Allow From All
        AuthBasicProvider file ldap
        AuthType Basic
        AuthName "Nagios Access"
        AuthUserFile /etc/nagios3/htpasswd.users
        require valid-user
        AuthLDAPBindDN "CN=Nagios
        AuthLDAPBindPassword "PASSWORD"

Replacing EXAMPLE.COM and PASSWORD, of course.  Note the port number
(3268) - it's the global catalog port, not the regular LDAP port.  Not
sure why this matters, but it did for me last time I was doing this.
Also, you need to create an account to bind to AD with, so you can get
into AD and validate password attempts.

Also, specifying "AuthBasicProvider file ldap" and the subsequent
lines means that you can define a secure account in Nagios, in case AD
is down, and you're trying to get into Nagios to shut it up and make
it stop sending you messages.

Breandan Dezendorf
breandan at
bwdezend at

Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)!
Finally, a world-class log management solution at an even better price-free!
Download using promo code Free_Logger_4_Dev2Dev. Offer expires 
February 28th, so secure your free ArcSight Logger TODAY!
Nagios-users mailing list
Nagios-users at
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null

More information about the Users mailing list