that said, for Coren it works. and:

# LDAP authentication
AuthName "WMF Labs (use wiki login name not shell)"
AuthType Basic
AuthBasicProvider ldap
AuthLDAPBindDN cn=proxyagent,ou=profile,dc=wikimedia,dc=org
AuthLDAPBindPassword XXXXXXXXXXX
AuthLDAPURL "ldaps://ldap-eqiad.wikimedia.org ldap-codfw.wikimedia.org/ou=people,dc=wikimedia,dc=org?cn"

<LimitExcept OPTIONS>
                Require ldap-group cn=ops,ou=groups,dc=wikimedia,dc=org
                Require ldap-group cn=nda,ou=groups,dc=wikimedia,dc=org
                Require ldap-group cn=wmf,ou=groups,dc=wikimedia,dc=org
            </LimitExcept>

I can confirm that for me, my graphite and icinga login are identical (ldap) and both function.

clarification: so i tested the initial login prompt on graphite. The additional login option once the graphite web GUI loads doesn't work for me either.

@Eevans are you clicking the "login" button in the upper right corner in the UI itself and then get the error? like i did? that doesn't work. but as RobH points out the initial pop-up auth from Apache works and is hooked up to LDAP. after that, regardless of the additional login link, you should already be able to see data when you uncollapse the tree on the left hand side.

@Dzahn right, that describes what I am seeing. It was my hope that if logged in I could save graphs, but it sounds like that's not supported.

@Eevans i'm afraid it's not. wondering now if we should keep this bug open to support saving graphs and slightly repurpose it

@Dzahn I can't really speak to how useful this would be, I've never tried it (that's what I was trying to do when I discovered you couldn't login). With http://grafana.wikimedia.org an option, perhaps it's not necessary.

I think grafana is the answer for that indeed. Let me close this then. We can always reopen.