Page MenuHomePhabricator

Netbox should use CN rather than UID for LDAP login username
Closed, DeclinedPublic

Description

To be consistent with Wikitech, Gerrit, Phabricator, and other LDAP authentication consumers, the login form for https://netbox.wikimedia.org/ should expect the "Username" field to provide the LDAP-backed developer account's 'cn' attribute (e.g. "BryanDavis") rather than the account's 'uid' attribute (e.g. "bd808").

Event Timeline

jcrespo added a project: netops.
jcrespo added subscribers: ayounsi, Volans, jcrespo.

I don't think this is that important, but it should either justified and documented, or scheduled to change at some point CC @Volans @ayounsi what do you think?

IIRC it was decided to use the UID, cc @faidon

I'll decline, on the basis that this will be converted to use SSO soon-ish, and there's no point in going over two migrations :)