vishalnayak/ldap.sh

## ldap.sh
#!/bin/bash
set -aex
cat > ldapConfig -<<EOF
{
			"url":      "ldap://ldap.forumsys.com",
			"userattr": "uid",
			"userdn":   "dc=example,dc=com",
			"groupdn":  "dc=example,dc=com",
			"binddn":   "cn=read-only-admin,dc=example,dc=com"
}
EOF
vault auth enable -local ldap
vault write auth/ldap/config @ldapConfig
vault write auth/ldap/groups/testgroup1 policies=testgroup1-policy
vault write auth/ldap/users/tesla policies=default groups=testgroup1
clientToken=$(vault write -format json auth/ldap/login/tesla password=password | jq -r .auth.client_token)
vault token lookup $clientToken
	#!/bin/bash
	set -aex
	cat > ldapConfig -<<EOF
	{
	"url": "ldap://ldap.forumsys.com",
	"userattr": "uid",
	"userdn": "dc=example,dc=com",
	"groupdn": "dc=example,dc=com",
	"binddn": "cn=read-only-admin,dc=example,dc=com"
	}
	EOF
	vault auth enable -local ldap
	vault write auth/ldap/config @ldapConfig
	vault write auth/ldap/groups/testgroup1 policies=testgroup1-policy
	vault write auth/ldap/users/tesla policies=default groups=testgroup1
	clientToken=$(vault write -format json auth/ldap/login/tesla password=password \| jq -r .auth.client_token)
	vault token lookup $clientToken