All,

I have the agent login and sync process working via LDAP, but cannot get the customer login piece to work correctly. What am I missing to allow customers to login via LDAP? Thanks in advance.

Configuration as follows:

##############################################################

# AUTHENTICATE CUSTOMERS AGAINST LDAP

##############################################################

# CustomerUser

    # (customer user ldap backend and settings)

    $Self->{CustomerUser} = {

        Name => 'MyDomain AD',

        Module => 'Kernel::System::CustomerUser::LDAP',

        Params => {

            Host => 'myDomainController.myDomain.com',

            BaseDN => 'cn=Users,dc=mydomain,dc=com',

            SSCOPE => 'sub',

            UserDN => 'otrs_read_only',

            UserPw => 'xxxx',

            # in case you want to add always one filter to each ldap query, use

            # this option. e. g. AlwaysFilter => '(mail=*)' or AlwaysFilter => '(objectclass=user)'

            #AlwaysFilter => '(objectclass=user)',

            Params => {

                port => 389,

                timeout => 120,

                async => 0,

                version => 3,

            },

        },

        CustomerKey => 'uid',

        CustomerID => 'mail',

        CustomerUserListFields => ['cn', 'mail'],

        CustomerUserSearchFields => ['uid', 'cn', 'mail'],

        CustomerUserSearchPrefix => '',

        CustomerUserSearchSuffix => '*',

        CustomerUserSearchListLimit => 250,

        CustomerUserPostMasterSearchFields => ['mail'],

        CustomerUserNameFields => ['givenname', 'sn'],

        # show not own tickets in customer panel, CompanyTickets

        CustomerUserExcludePrimaryCustomerID => 0,

        # add a ldap filter for valid users (expert setting)

#       CustomerUserValidFilter => '(!(description=gesperrt))',

        # admin can't change customer preferences

        AdminSetPreferences => 0,

#        # cache time to life in sec. - cache any database queris

#        CacheTTL => 0,

       Map => [

            # note: Login, Email and CustomerID needed!

            # var, frontend, storage, shown (1=always,2=lite), required, storage-type, http-link, readonly

            [ 'UserSalutation', 'Title',      'title',           1, 0, 'var', '', 0 ],

            [ 'UserFirstname',  'Firstname',  'givenname',       1, 1, 'var', '', 0 ],

            [ 'UserLastname',   'Lastname',   'sn',              1, 1, 'var', '', 0 ],

            [ 'UserLogin',      'Username',   'uid',             1, 1, 'var', '', 0 ],

            [ 'UserEmail',      'Email',      'mail',            1, 1, 'var', '', 0 ],

            [ 'UserCustomerID', 'CustomerID', 'mail',            0, 1, 'var', '', 0 ],

#            [ 'UserCustomerIDs', 'CustomerIDs', 'second_customer_ids', 1, 0, 'var', '', 0 ],

            [ 'UserPhone',      'Phone',      'telephonenumber', 1, 0, 'var', '', 0 ],

            [ 'UserAddress',    'Address',    'postaladdress',   1, 0, 'var', '', 0 ],

            [ 'UserComment',    'Comment',    'description',     1, 0, 'var', '', 0 ],

        ],

    };