[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Recommended ACL for nagios monitoring

To: ML mail <mlnospam@yahoo.com>, "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Subject: Re: Recommended ACL for nagios monitoring
From: Michael Ströder <michael@stroeder.com>
Date: Mon, 25 Nov 2013 18:18:14 +0100
In-reply-to: <1385378455.11738.YahooMailNeo@web164601.mail.gq1.yahoo.com>
References: <1385378455.11738.YahooMailNeo@web164601.mail.gq1.yahoo.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:25.0) Gecko/20100101 Firefox/25.0 SeaMonkey/2.22

ML mail wrote:
> I would like to monitor connectivity to my OpenLDAP using nagios with its
> check_ldap script and was wondering which minimal ACL would you recommend
> for that purpose?

It really depends on what you want to check.

Things which come to mind:

1. Performance data from cn=monitor

2. Count entries in your databases with noop-search control (does not scale
for many entries)

3. Read syncrepl topology from cn=config to automatigally check connection to
the replicas found therein and compare contextCSN values in DB suffixes.

Ciao, Michael.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Follow-Ups:
- Antw: Re: Recommended ACL for nagios monitoring
  - From: "Ulrich Windl" <Ulrich.Windl@rz.uni-regensburg.de>

References:
- Recommended ACL for nagios monitoring
  - From: ML mail <mlnospam@yahoo.com>

Prev by Date: Re: Recommended ACL for nagios monitoring
Next by Date: OpenLDAP with ppolicy and SSSD configuration question.
Index(es):
- Chronological
- Thread