All,
I have the agent login and sync process working via LDAP, but cannot get the customer login piece to work correctly. What am I missing to allow customers to login via LDAP? Thanks in advance.
Configuration as follows:
##############################################################
# AUTHENTICATE CUSTOMERS AGAINST LDAP
##############################################################
# CustomerUser
# (customer user ldap backend and settings)
$Self->{CustomerUser} = {
Name => 'MyDomain AD',
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
Host => 'myDomainController.myDomain.com',
BaseDN => 'cn=Users,dc=mydomain,dc=com',
SSCOPE => 'sub',
UserDN => 'otrs_read_only',
UserPw => 'xxxx',
# in case you want to add always one filter to each ldap query, use
# this option. e. g. AlwaysFilter => '(mail=*)' or AlwaysFilter => '(objectclass=user)'
#AlwaysFilter => '(objectclass=user)',
Params => {
port => 389,
timeout => 120,
async => 0,
version => 3,
},
},
CustomerKey => 'uid',
CustomerID => 'mail',
CustomerUserListFields => ['cn', 'mail'],
CustomerUserSearchFields => ['uid', 'cn', 'mail'],
CustomerUserSearchPrefix => '',
CustomerUserSearchSuffix => '*',
CustomerUserSearchListLimit => 250,
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['givenname', 'sn'],
# show not own tickets in customer panel, CompanyTickets
CustomerUserExcludePrimaryCustomerID => 0,
# add a ldap filter for valid users (expert setting)
# CustomerUserValidFilter => '(!(description=gesperrt))',
# admin can't change customer preferences
AdminSetPreferences => 0,
# # cache time to life in sec. - cache any database queris
# CacheTTL => 0,
Map => [
# note: Login, Email and CustomerID needed!
# var, frontend, storage, shown (1=always,2=lite), required, storage-type, http-link, readonly
[ 'UserSalutation', 'Title', 'title', 1, 0, 'var', '', 0 ],
[ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var', '', 0 ],
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var', '', 0 ],
[ 'UserLogin', 'Username', 'uid', 1, 1, 'var', '', 0 ],
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var', '', 0 ],
[ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var', '', 0 ],
# [ 'UserCustomerIDs', 'CustomerIDs', 'second_customer_ids', 1, 0, 'var', '', 0 ],
[ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var', '', 0 ],
[ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var', '', 0 ],
[ 'UserComment', 'Comment', 'description', 1, 0, 'var', '', 0 ],
],
};
Confidentiality Notice: The information contained in this transmission is confidential, proprietary and privileged and may be subject to protection under various state and Federal laws and regulations regarding non-public personal health and financial information. No confidentiality or privilege is waived or lost by any mistaken or unintended transmission. This information is for the use of the individual or entity to whom it is addressed for the sole purpose of performing the intended insurance-related function. All recipients are hereby notified that any improper use, distribution, or copying of this information is strictly prohibited and may subject you to applicable criminal and/or civil penalties. If you have received this transmission in error, please immediately notify the sender by replying to this e-mail message or calling 1.888.654.7100, and thereafter, immediately destroy the message.
Hi,
On 05.01.2010, at 19:57, Gerren Murphy wrote:
I have the agent login and sync process working via LDAP, but cannot get the customer login piece to work correctly. What am I missing to allow customers to login via LDAP? Thanks in advance.
your configuration just defines a customer data source but no customer authentication source. I suggest to just open Defaults.pm and search for Customer::AuthModule ... there is an example for customer LDAP authentication.
Cheers, Nils
Nils Leideck
Nils,
Thanks, I just got that piece working just before I received your message. I am now getting the "Panic! No UserData!!!" error that I am working on.
I'm guessing it is something to do with the map, but not sure why yet.
Thanks for your guidance.
From: itsm-bounces@otrs.org [mailto:itsm-bounces@otrs.org] On Behalf Of Nils Leideck - ITSM Sent: Tuesday, January 05, 2010 2:34 PM To: OTRS::ITSM User questions and discussions Subject: Re: [itsm] Customer LDAP Sync/Login
Hi,
On 05.01.2010, at 19:57, Gerren Murphy wrote:
I have the agent login and sync process working via LDAP, but cannot get the customer login piece to work correctly. What am I missing to allow customers to login via LDAP? Thanks in advance.
your configuration just defines a customer data source but no customer authentication source.
I suggest to just open Defaults.pm and search for Customer::AuthModule ... there is an example for customer LDAP authentication.
Cheers, Nils
Nils Leideck
participants (2)
-
Gerren Murphy
-
Nils Leideck - ITSM