[otrs-de] customer auth ldap AcceptSecurityContext error
it-news (Josef Lahmer)
it-news at gugler.at
Don Jan 3 17:25:06 GMT 2008
liebe liste,
kann mit leider nicht im customer-interface über windows 2003er domäne authentifizieren.
bekommt im otrs log folgende einträge:
Jan 3 16:47:05 wiki OTRS-CGI-10[9512]: [Error][Kernel::System::CustomerAuth::LDAP::Auth][Line:168]: First bind failed! 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece
eventuell scheitert es am authentifizierungstyp? - NTLM, NTLMv2, Kerberos? was ist erlaubt?
ideen?
was wir/sollte an den dc's im eventlog angezeigt? - dort hab ich auch keine einträge gefunden.
lg josy
-------------------
die config:
$Self->{UserSyncLDAPMap} = {
UserFirstname => 'givenName',
UserLastname => 'sn',
UserEmail => 'mail',
};
$Self->{'SecureMode'} = 1;
$Self->{'FQDN'} = 'test-wiki.gcm.gugler.at';
$Self->{'AdminEmail'} = 'it at gugler.at';
$Self->{'Organization'} = 'Gugler gmbh';
$Self->{'DefaultCharset'} = 'utf-8';
$Self->{'DefaultLanguage'} = 'de';
$Self->{'LogModule::LogFile'} = '/var/log/otrs.log';
$Self->{'UserSyncLDAPMap'} = {
'UserEmail' => 'mail',
'UserFirstname' => 'givenName',
'UserLastname' => 'sn'
};
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} = 'server-gcm.gcm.gugler.at';
$Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'dc=gcm,dc=gugler,dc=at';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'uid';
$Self->{'Customer::AuthModule::LDAP::GroupDN'} = 'cn=otrs_gruppe,ou=Verwaltung,dc=gcm,dc=gugler,dc=at';
$Self->{'Customer::AuthModule::LDAP::AccessAttr'} = 'sAMAccountName';
$Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'UID';
$Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'cn=otrs_search,ou=Verwaltung,dc=gcm,dc=gugler,dc=at';
$Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = '<password>';
delete $Self->{'Customer::AuthModule::Radios::Die'};
$Self->{'1'} = 1;