Bitte beachte, dass zu obiger Einstellung noch wesentlich mehr gehört, als nur die eine Zeile. Schau Dir das mal in der Defaults.pm an (funktioniert für Defaults.pm,v1.114):
Ja, mir ist schon klar, dass ich da mehr brauche. Ich hab auch schon mehr in meinem Config.pm mehr drin:
# --------------------------------------------------- # # customer authentication settings # # (enable what you need, auth against otrs db or # # against a LDAP directory) # # --------------------------------------------------- # $Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP'; $Self->{'Customer::AuthModule::LDAP::Host'} = 'localhost'; $Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'ou=people,dc=efkon,dc=com'; $Self->{'Customer::AuthModule::LDAP::UID'} = 'uid'; # Check if the user is allowed to auth in a posixGroup # (e. g. user needs to be in a group xyz to use otrs) # $Self->{'Customer::AuthModule::LDAP::GroupDN'} = 'ou=people,dc=efkon,dc=com'; # for ldap posixGroups objectclass (just uid) # $Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'UID'; # for non ldap posixGroups objectclass (full user dn) # $Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'DN';
# The following is valid but would only be necessary if the # anonymous user do NOT have permission to read from the LDAP tree # $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = ''; # $Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = '';
# (customer user ldap backend and settings) $Self->{CustomerUser} = { Name => 'LDAP Backend', Module => 'Kernel::System::CustomerUser::LDAP', Params => { # ldap host Host => 'localhost', # ldap base dn BaseDN => 'ou=people,dc=efkon,dc=com', # search scope (one|sub) SSCOPE => 'sub', # The following is valid but would only be necessary if the # anonymous user does NOT have permission to read from the LDAP tree # UserDN => '', # UserPw => '', }, # customer uniq id CustomerKey => 'cn', # customer # CustomerID => 'uid', CustomerUserListFields => ['cn', 'mail'], CustomerUserSearchFields => ['uid', 'cn', 'mail'], CustomerUserPostMasterSearchFields => ['uid', 'mail'], CustomerUserNameFields => ['givenname', 'sn'], Map => [ # note: Login, Email and CustomerID needed! # var, frontend, storage, shown, required, storage-type # [ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ], [ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ], [ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ], [ 'UserLogin', 'Login', 'uid', 1, 1, 'var' ], [ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ], [ 'UserCustomerID', 'CustomerID', 'uid', 1, 1, 'var' ], [ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var' ], # [ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ], [ 'UserComment', 'Comment', 'description', 1, 0, 'var' ], ], };
In meinem /var/log/messages findet sich leider auch nicht mehr als
Mar 8 08:05:21 localhost OTRS-CGI-10[1434]: [Notice][Kernel::System::Auth::LDAP::Auth] User: nber logged in (REMOTE_ADDR: 127.0.0.1). Mar 8 08:05:25 localhost OTRS-CGI-10[1441]: [Notice][Kernel::System::AuthSession::IPC::RemoveSessionID] Removed SessionID 10f324b695b200103637bb167459c2bae6. wenn ich den "Panic! No UserData!!!"-Error bekomme ...
Wie gesagt, das User-Login (index.pl) funktioniert einwandfrei. -- Nora Bernhard Systems Administrator - Linux "There are 10 types of people: Those, who understand binary, and those, who don't."