Hallo! In der Ereignisanzeige des AD ist nichts verzeichnet. Ich habe jetzt mal aus den Support Tools von M$ die ldp.exe auf den Server gestartet. Dort bin ich als Administrator angemeldet und habe die Datei gestartet. Anschließend bekomme ich die Einstellungen aufgelistet. ld = ldap_open("Franz.local", 389); Established connection to Franz.local. Retrieving base DSA information... Result <0>: (null) Matched DNs: Getting 1 entries:

...

Dn: 1> currentTime: 6/11/2004 10:6:50 Westeuropäische Normalzeit Westeuropäische Normalzeit; 1> subschemaSubentry: CN=Aggregate,CN=Schema,CN=Configuration,DC=Franz,DC=local; 1> dsServiceName: CN=NTDS Settings,CN=BI-SERVER-01,CN=Servers,CN=Standardname-des-ersten-Standorts,CN=Sites,CN=Configuration,DC=Franz,DC=local; 3> namingContexts: CN=Schema,CN=Configuration,DC=Franz,DC=local; CN=Configuration,DC=Franz,DC=local; DC=Franz,DC=local; 1> defaultNamingContext: DC=Franz,DC=local; 1> schemaNamingContext: CN=Schema,CN=Configuration,DC=Franz,DC=local; 1> configurationNamingContext: CN=Configuration,DC=Franz,DC=local; 1> rootDomainNamingContext: DC=Franz,DC=local; 16> supportedControl: 1.2.840.113556.1.4.319; 1.2.840.113556.1.4.801; 1.2.840.113556.1.4.473; 1.2.840.113556.1.4.528; 1.2.840.113556.1.4.417; 1.2.840.113556.1.4.619; 1.2.840.113556.1.4.841; 1.2.840.113556.1.4.529; 1.2.840.113556.1.4.805; 1.2.840.113556.1.4.521; 1.2.840.113556.1.4.970; 1.2.840.113556.1.4.1338; 1.2.840.113556.1.4.474; 1.2.840.113556.1.4.1339; 1.2.840.113556.1.4.1340; 1.2.840.113556.1.4.1413; 2> supportedLDAPVersion: 3; 2; 12> supportedLDAPPolicies: MaxPoolThreads; MaxDatagramRecv; MaxReceiveBuffer; InitRecvTimeout; MaxConnections; MaxConnIdleTime; MaxActiveQueries; MaxPageSize; MaxQueryDuration; MaxTempTableSize; MaxResultSetSize; MaxNotificationPerConn; 1> highestCommittedUSN: 2907035; 2> supportedSASLMechanisms: GSSAPI; GSS-SPNEGO; 1> dnsHostName: bi-server-01.Franz.local; 1> ldapServiceName: Franz.local:bi-server-01$@Franz.LOCAL; 1> serverName: CN=BI-SERVER-01,CN=Servers,CN=Standardname-des-ersten-Standorts,CN=Sites,CN=Configuration,DC=Franz,DC=local; 2> supportedCapabilities: 1.2.840.113556.1.4.800; 1.2.840.113556.1.4.1791; 1> isSynchronized: TRUE; 1> isGlobalCatalogReady: TRUE;

Dann hier noch mal die Einträge aus der Config.pm $Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP'; $Self->{'AuthModule::LDAP::Host'} = '172.16.2.1'; $Self->{'AuthModule::LDAP::BaseDN'} = 'dc=Franz,dc=local'; # $Self->{'AuthModule::LDAP::BaseDN'} = 'ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local'; $Self->{'AuthModule::LDAP::UID'} = 'sAMAccountName'; $Self->{'AuthModule::LDAP::SearchUserDN'} = 'cn=Administrator,ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local'; $Self->{'AuthModule::LDAP::SearchUserPw'} = 'password'; # $Self->{'AuthModule::LDAP::GroupDN'} = 'cn=Administrator,ou=Verwaltung,ou=Franz-Denutzer,dc=Franz,dc=local'; $Self->{'AuthModule::LDAP::AccessAttr'} = 'memberUid'; # $Self->{'AuthModule::LDAP::UserAttr'} = 'UID'; $Self->{'AuthModule::LDAP::UserAttr'} = 'DN'; $Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP'; $Self->{'Customer::AuthModule::LDAP::Host'} = '172.16.2.1'; $Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'dc=Franz,dc=local'; # $Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'ou=Franz-Benutzer,dc=Franz,dc=local'; $Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName'; # $Self->{'Customer::AuthModule::LDAP::GroupDN'} = 'cn=ldap,ou=Franz-Benutzer,dc=Franz,dc=local'; # $Self->{'Customer::AuthModule::LDAP::GroupDN'} = 'cn=Administrator,ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local'; # $Self->{'Customer::AuthModule::LDAP::AccessAttr'} = 'cn=Administrator,ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local'; $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'cn=Administrator,ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local'; $Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = "password"; $Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'DN'; $Self->{'Customer::AuthModule::LDAP::Params'} = { port => 389, version => 3, }; $Self->{UserSyncLDAPMap} = { # DB -> LDAP Firstname => 'givenName', Lastname => 'sn', Email => 'mail', }; #customerUser1 #(Customer user ldap backend and settings) $Self->{CustomerUser1} = { Name => 'LDAP Quelle Franz', Module => 'Kernel::System::CustomerUser::LDAP', Params => { # ldap host Host => '172.16.2.1', # ldap base dn # BaseDN => 'dc=Franz,dc=local', BaseDN => 'ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local', # search scope (one|sub) SSCOPE => 'sub', # The following is valid but would only be necessary if the # anonymous user does NOT have permission to read from the LDAP tree UserDN => 'cn=Administrator,ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local', UserPW => 'password', AlwaysFilter => '', SourceCharset => 'utf-8', DestCharset => 'iso-8859-1', }, # customer uniq id CustomerKey => 'sAMAccountName', # customer # CustomerID => 'mail', CustomerUserListFields => ['sAMAccountName', 'cn', 'mail'], CustomerUserSearchFields => ['sAMAccountName', 'cn', 'mail'], CustomerUserSearchPrefix => '', CustomerUserSearchSuffix => '*', CustomerUserSearchListLimit => 250, CustomerUserPostMasterSearchFields => ['mail'], CustomerUserNameFields => ['givenname', 'sn'], Map => [ # note: Login, Email and CustomerID needed! # var, frontend, storage, shown, required, storage-type # [ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ], [ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ], [ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ], [ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ], [ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ], [ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ], # [ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var' ], # [ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ], # [ 'UserComment', 'Comment', 'description', 1, 0, 'var' ], # [ 'Userorganisation', 'Organisation', 'ou', 1, 0, 'var' ] ], }; Bis dahin! Bernhard Mainusch __________________________________________________________________ Zeigen Sie Emotionen mit der WEB.DE Bild-SMS! Das Bild ist gratis, Sie bezahlen nur den Versand. http://freemail.web.de/?mc=021196