LDAP Konfig bei USMO

###!   in yaml format and the spaces must be retained. Using tabs will not work.**

gitlab_rails['ldap_enabled'] = true
gitlab_rails['prevent_ldap_sign_in'] = false

###! **remember to close this block with 'EOS' below**
gitlab_rails['ldap_servers'] = YAML.load <<-'EOS'
  main: # 'main' is the GitLab 'provider ID' of this LDAP server
    label: 'LDAP'
    host: 'corp.stemoag.ch'
    port: 389  #389 636
    uid: 'sAMAccountName'
    bind_dn: 'CN=sa_netadmin,OU=Service Accounts,OU=Benutzer,OU=Benutzerkonten,DC=corp,DC=stemoag,DC=ch'
#' CN=grp-bere-GitLab,OU=Gruppen-Berechtigungen,OU=Benutzerkonten,DC=corp,DC=stemoag,DC=ch'
    password: 'azrzKLéJ97)(93s==siehePW-Safe==ueswerewr'
    encryption: 'plain' # "start_tls" or "simple_tls" or "plain"
    timeout: '10'
    verify_certificates: false
    smartcard_auth: false
    active_directory: true
    smartcard_ad_cert_field: 'altSecurityIdentities'
    smartcard_ad_cert_format: null # 'issuer_and_serial_number', 'issuer_and_subject' , 'principal_name'
    allow_username_or_email_login: true
    lowercase_usernames: false
    block_auto_created_users: false
    base: 'DC=corp,DC=stemoag,DC=ch'
    user_filter: '(&(objectClass=user)(memberOf:1.2.840.113556.1.4.1941:=CN=grp-bere-GitLab,OU=Gruppen-Berechtigungen,OU=Benutzerkonte>
    ## EE only
    group_base: 'CN=grp-bere-GitLab,OU=Gruppen-Berechtigungen,OU=Benutzerkonten,DC=corp,DC=stemoag,DC=ch'
    admin_group: 'CN=grp-bere-GitLabAdmin,OU=Gruppen-Berechtigungen,OU=Benutzerkonten,DC=corp,DC=stemoag,DC=ch'
    sync_ssh_keys: false

#   secondary: # 'secondary' is the GitLab 'provider ID' of second LDAP server
</re>

danach

 sudo gitlab-ctl reconfigure

LDAP Check mit 

 sudo gitlab-rake gitlab:ldap:check