All, I have the agent login and sync process working via LDAP, but cannot get the customer login piece to work correctly. What am I missing to allow customers to login via LDAP? Thanks in advance. Configuration as follows: ############################################################## # AUTHENTICATE CUSTOMERS AGAINST LDAP ############################################################## # CustomerUser # (customer user ldap backend and settings) $Self->{CustomerUser} = { Name => 'MyDomain AD', Module => 'Kernel::System::CustomerUser::LDAP', Params => { Host => 'myDomainController.myDomain.com', BaseDN => 'cn=Users,dc=mydomain,dc=com', SSCOPE => 'sub', UserDN => 'otrs_read_only', UserPw => 'xxxx', # in case you want to add always one filter to each ldap query, use # this option. e. g. AlwaysFilter => '(mail=*)' or AlwaysFilter => '(objectclass=user)' #AlwaysFilter => '(objectclass=user)', Params => { port => 389, timeout => 120, async => 0, version => 3, }, }, CustomerKey => 'uid', CustomerID => 'mail', CustomerUserListFields => ['cn', 'mail'], CustomerUserSearchFields => ['uid', 'cn', 'mail'], CustomerUserSearchPrefix => '', CustomerUserSearchSuffix => '*', CustomerUserSearchListLimit => 250, CustomerUserPostMasterSearchFields => ['mail'], CustomerUserNameFields => ['givenname', 'sn'], # show not own tickets in customer panel, CompanyTickets CustomerUserExcludePrimaryCustomerID => 0, # add a ldap filter for valid users (expert setting) # CustomerUserValidFilter => '(!(description=gesperrt))', # admin can't change customer preferences AdminSetPreferences => 0, # # cache time to life in sec. - cache any database queris # CacheTTL => 0, Map => [ # note: Login, Email and CustomerID needed! # var, frontend, storage, shown (1=always,2=lite), required, storage-type, http-link, readonly [ 'UserSalutation', 'Title', 'title', 1, 0, 'var', '', 0 ], [ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var', '', 0 ], [ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var', '', 0 ], [ 'UserLogin', 'Username', 'uid', 1, 1, 'var', '', 0 ], [ 'UserEmail', 'Email', 'mail', 1, 1, 'var', '', 0 ], [ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var', '', 0 ], # [ 'UserCustomerIDs', 'CustomerIDs', 'second_customer_ids', 1, 0, 'var', '', 0 ], [ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var', '', 0 ], [ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var', '', 0 ], [ 'UserComment', 'Comment', 'description', 1, 0, 'var', '', 0 ], ], }; Confidentiality Notice: The information contained in this transmission is confidential, proprietary and privileged and may be subject to protection under various state and Federal laws and regulations regarding non-public personal health and financial information. No confidentiality or privilege is waived or lost by any mistaken or unintended transmission. This information is for the use of the individual or entity to whom it is addressed for the sole purpose of performing the intended insurance-related function. All recipients are hereby notified that any improper use, distribution, or copying of this information is strictly prohibited and may subject you to applicable criminal and/or civil penalties. If you have received this transmission in error, please immediately notify the sender by replying to this e-mail message or calling 1.888.654.7100, and thereafter, immediately destroy the message.