06 Sep

LDAP support in pgbouncer

178.00K views
1

I am looking for RPM or build instruction for pgbouncer that has LDAP support.
I think GP added that feature, which is not available in the pgbouncer natively.

Can you please help?

Thanks
Dinesh

deleted answer

Hi All – I got pgbouncer to work. But it looks like it only does plain text authentication. Do you know if I can get TLS connection to work. All I can do in userlist.txt is something like this “gpdbuser1” “ldap://10.0.0.11:10389/uid=gpdbuser1,ou=users,ou=system” But above connection format does connection over plain text ? Anybody familiar with making TLS connection to work greenplum pgbouncer? Please let me know. Thanks Dinesh

0

I was able to find some community AIM ( aws ) and able to start up pgbouncer. Now I am running into LDAP specific issue.

with postgres ( pg_hba.conf) following LDAP string works, but does not work with pgouncer. I need to able to bind with service account and authenticate that way. Does anyone know how do I work around this issue? When I enter the following it get “Bad ldap url format”.

ldap ldapserver=”ldap.jumpcloud.com” ldapport=389 ldaptls=1 ldapbasedn=”ou=Users,o=######,dc=jumpcloud,dc=com”ldapbinddn=”uid=#####,ou=Users,o=#####,dc=jumpcloud,dc=com” ldapbindpasswd=”#####”

On Greenplum doc, the recommended approach is:
“gpdbuser1” “ldap://10.0.0.11:10389/uid=gpdbuser1,ou=users,ou=system”

Thanks.

0

pgbouncer is a submodule of Greenplum source code. Update it with following command:
git submodule update –init –recursive

commented on answer

Thanks Li. I was able to get git repo and run Configure on it. But when I run “make”, it always fails with /usr/bin/ld: cannot find -lssl. But on the same box regular pgbouncer builds OK. Any idea? I am not too familiar with linking C libraries. Thanks for your help.

1

Here is the code:
https://github.com/greenplum-db/gpdb/tree/master/gpAux/extensions/pgbouncer

Working on enterprise software since 2002, and on big data and database management systems since 2007. Started on Greenplum Database in 2009 as a performance engineer and worked in various R&D and support capacities until shifting into product management for the world’s greatest database: Greenplum.

commented on answer

Ivan, how do I build this? I do see some pgbouncer tarball under release, but they seem to be missing files in lib directory? Could you please explain ?

1

https://github.com/greenplum-db/pgbouncer

commented on answer

I do see tar files here: https://github.com/greenplum-db/pgbouncer/releases. But I do not see any files in lib directory? Also How does the installation work for this fork? I do not see any installation instructions?

0

Can you have a look here and let us know any more questions?

https://gpdb.docs.pivotal.io/500Beta/utility_guide/admin_utilities/pgbouncer-ref.html

Working on enterprise software since 2002, and on big data and database management systems since 2007. Started on Greenplum Database in 2009 as a performance engineer and worked in various R&D and support capacities until shifting into product management for the world’s greatest database: Greenplum.

commented on answer

Hi, I am looking for the source code or RPM that Greenplum built to add LDAP feature. The standard pgbouncer does not support LDAP integration. Do you know where I can get hold of RPM or source code for that? Thanks Dinesh