Description of problem: The methods for enabling ldap in system engine, as referenced in the documentation are apparently discouraged -- and possibly suspect. https://access.redhat.com/site/documentation/en-US/CloudForms/1.1/html-single/Installation_Guide/index.html#Configuring_LDAP_for_CloudForms_System_Engine Rather than edit files, per dev folks, we should be encouraging folks to use the method as outlined in katello upstream https://fedorahosted.org/katello/wiki/LDAP In particular: $> katello-configure --deployment=katello --auth-method=ldap --user-name=[your LDAP login] --ldap-server=[hostname of your ldap server] --ldap-port=[port of your ldap server, default=389] --ldap-server-type=[free_ipa,active_directory,posix, default=posix] --ldap_encryption=[start_tls, default=none] --ldap-users-basedn=[base dn of users, eg ou=People,dc=company,dc=com] --ldap-groups-basedn=[base dn of groups, eg ou=Groups,dc=company,dc=com. default = users basedn] --ldap-anon-queries=[true if your FreeIPA or AD servers allow anonymous queries, default=false] --ldap-service-user=[username of service user for free IPA & active directory. see below. default=empty] --ldap-service-pass=[password of service user from above. default=empty] --ldap-ad-domain=[domain for making AD queries. default=empty] --ldap-roles=[Turns on mode 2 from above. default=false]
Verified. Now using CLI method to configure LDAP.
This was verified and delivered with MDP2. Closing it out.