We currently don't run the Prometheus exporter for the OpenLDAP corp replica. (Originally because there was no cn=monitor user for accessing the LDAP sub tree where the metrics are available. This has since been fixed by OIT, so we can now setup the exporter for the corp replica and add a respective Grafana dashboard.
Description
Description
| Status | Subtype | Assigned | Task | ||
|---|---|---|---|---|---|
| Resolved | fgiunchedi | T205862 Expand modern metrics infrastructure coverage (2018-19 Q2 goal) | |||
| Resolved | colewhite | T183454 Deprovision Diamond collectors no longer in use | |||
| Declined | None | T206327 Setup metrics monitoring for OpenLDAP/corp |
Event Timeline
Comment Actions
Some pointers for implementation:
- The corp replicas are dubnium and pollux, you can do a regular "ldapsearch -x cn=monitor "to see the user
- The profile profile::prometheus::openldap_exporter will need a few tweaks to be also reused for the corp replica:
- We need to include a different password for the LDAP bind of the monitoring user
- The monitoring user is in a different container, for openldap/labs it's below the LDAP base, but apparently with the user management tools for the corp LDAP that's not possible, so it's currently in the ou=people, as such the prometheus.conf.erb needs to be adapted for corp