May 2010 - otrs - OTRS mailing lists

help about migration to new server
by Ekram 07 May '10

07 May '10

Hi, I've install OTRS 2.4.7 in new machine in debian lenny.(source installation) OTRS 2.04 has been running in an old machine for quite a long time. How can i move the OLD OTRS 2.04 to new one in the new machine? Note that database is using here is postgres in both server. -Ekram

3 4

Can I delete customer email attachment?
by Mike Morris 07 May '10

07 May '10

One of our customers sent an email to a queue and the email contained a scanned (PDF) form with sensitive data; I need to delete the attachment while hopefully retaining the body of the email. I am storing attachments in the DB, so I can't just delete it from disk. Is there any way to do this other than manually editing the MIME email BLOB in the DB, which would be messy?? TIA, MikeM

2 1

Re: [otrs] 3. how to handle customers without email adress ?
by Martignier, Philippe 07 May '10

07 May '10

Hi The dummy address has been created on a free website and I did nothing since then :) So the mailbox should be full :) Next to check that by the way, thanks !!! Phil World Intellectual Property Organization Disclaimer: This electronic message may contain privileged, confidential and copyright protected information. If you have received this e-mail by mistake, please immediately notify the sender and delete this e-mail and all its attachments. Please ensure all e-mail attachments are scanned for viruses prior to opening or using.

1 0

Active Directory Integration
by Valentin 07 May '10

07 May '10

Hello, I have some problems with the OTRS system and Active Directory. 1. I try to sync agents roles ( admin in AD -> admin in OTRS ). With the config bellow agents are capable to login with Active Directory credentials but no roles sync. # This is an example configuration for an LDAP auth. backend. # (take care that Net::LDAP is installed!) $Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP'; $Self->{'AuthModule::LDAP::Host'} = 'pdc.test.local'; $Self->{'AuthModule::LDAP::BaseDN'} = 'dc=test,dc=local'; $Self->{'AuthModule::LDAP::UID'} = 'sAMAccountName'; # Check if the user is allowed to auth in a posixGroup # (e. g. user needs to be in a group xyz to use otrs) # $Self->{'AuthModule::LDAP::GroupDN'} = 'cn=otrsallow,ou=posixGroups,dc=example,dc=com'; # $Self->{'AuthModule::LDAP::AccessAttr'} = 'memberUid'; # for ldap posixGroups objectclass (just uid) # $Self->{'AuthModule::LDAP::UserAttr'} = 'UID'; # for non ldap posixGroups objectclass (with full user dn) # $Self->{'AuthModule::LDAP::UserAttr'} = 'DN'; # The following is valid but would only be necessary if the # anonymous user do NOT have permission to read from the LDAP tree $Self->{'AuthModule::LDAP::SearchUserDN'} = 'CN=otrs_ldap,CN=Users,DC=test,DC=local'; $Self->{'AuthModule::LDAP::SearchUserPw'} = 'vali1982!'; # in case you want to add always one filter to each ldap query, use # this option. e. g. AlwaysFilter => '(mail=*)' or AlwaysFilter => '(objectclass=user)' # $Self->{'AuthModule::LDAP::AlwaysFilter'} = ''; # in case you want to add a suffix to each login name, then # you can use this option. e. g. user just want to use user but # in your ldap directory exists user@domain. # $Self->{'AuthModule::LDAP::UserSuffix'} = '@domain.com'; # In case you want to convert all given usernames to lower letters you # should activate this option. It might be helpfull if databases are # in use that do not distinguish selects for upper and lower case letters # (Oracle, postgresql). User might be synched twice, if this option # is not in use. # $Self->{'AuthModule::LDAP::UserLowerCase'} = 0; # In case you need to use OTRS in iso-charset, you can define this # by using this option (converts utf-8 data from LDAP to iso). # $Self->{'AuthModule::LDAP::Charset'} = 'iso-8859-1'; # Net::LDAP new params (if needed - for more info see perldoc Net::LDAP) $Self->{'AuthModule::LDAP::Params'} = { port => 389, timeout => 120, async => 0, version => 3, }; # Die if backend can't work, e. g. can't connect to server. $Self->{'AuthModule::LDAP::Die'} = 1; # --------------------------------------------------- # # authentication sync settings # # (enable agent data sync. after succsessful # # authentication) # # --------------------------------------------------- # # This is an example configuration for an LDAP auth sync. backend. # (take care that Net::LDAP is installed!) $Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP'; $Self->{'AuthSyncModule::LDAP::Host'} = 'pdc.test.local'; $Self->{'AuthSyncModule::LDAP::BaseDN'} = 'dc=test,dc=local'; $Self->{'AuthSyncModule::LDAP::UID'} = 'sAMAccountName'; # The following is valid but would only be necessary if the # anonymous user do NOT have permission to read from the LDAP tree $Self->{'AuthSyncModule::LDAP::SearchUserDN'} = 'CN=otrs_ldap,CN=Users,DC=test,DC=local'; $Self->{'AuthSyncModule::LDAP::SearchUserPw'} = 'vali1982!'; # in case you want to add always one filter to each ldap query, use # this option. e. g. AlwaysFilter => '(mail=*)' or AlwaysFilter => '(objectclass=user)' # $Self->{'AuthSyncModule::LDAP::AlwaysFilter'} = ''; # AuthSyncModule::LDAP::UserSyncMap # (map if agent should create/synced from LDAP to DB after successful login) $Self->{'AuthSyncModule::LDAP::UserSyncMap'} = { # DB -> LDAP UserFirstname => 'givenName', UserLastname => 'sn', UserEmail => 'mail', }; # In case you need to use OTRS in iso-charset, you can define this # by using this option (converts utf-8 data from LDAP to iso). # $Self->{'AuthSyncModule::LDAP::Charset'} = 'iso-8859-1'; # Net::LDAP new params (if needed - for more info see perldoc Net::LDAP) $Self->{'AuthSyncModule::LDAP::Params'} = { port => 389, timeout => 120, async => 0, version => 3, }; # Die if backend can't work, e. g. can't connect to server. $Self->{'AuthSyncModule::LDAP::Die'} = 1; # Attributes needed for group syncs # (attribute name for group value key) # $Self->{'AuthSyncModule::LDAP::AccessAttr'} = 'memberUid'; # (attribute for type of group content UID/DN for full ldap name) # $Self->{'AuthSyncModule::LDAP::UserAttr'} = 'UID'; # $Self->{'AuthSyncModule::LDAP::UserAttr'} = 'DN'; # AuthSyncModule::LDAP::UserSyncInitialGroups # (sync following group with rw permission after initial create of first agent # login) $Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = [ 'users', ]; # AuthSyncModule::LDAP::UserSyncGroupsDefinition # (If "LDAP" was selected for AuthModule and you want to sync LDAP # groups to otrs groups, define the following.) $Self->{'AuthSyncModule::LDAP::UserSyncGroupsDefinition'} = { # ldap group 'CN=Domain Admins,CN=Users,DC=test,DC=local' => { # otrs group 'admin' => { # permission rw => 1, ro => 1, }, 'faq' => { rw => 0, ro => 1, }, }, 'CN=Domain Admins,CN=Users,DC=test,DC=local' => { 'users' => { rw => 1, ro => 1, }, } }; # AuthSyncModule::LDAP::UserSyncRolesDefinition # (If "LDAP" was selected for AuthModule and you want to sync LDAP # groups to otrs roles, define the following.) $Self->{'AuthSyncModule::LDAP::UserSyncRolesDefinition'} = { # ldap group 'CN=Domain Admins,CN=Users,DC=test,DC=local' => { # otrs role 'role1' => 1, 'role2' => 0, }, 'CN=Domain Admins,CN=Users,DC=test,DC=local' => { 'role3' => 1, } }; # AuthSyncModule::LDAP::UserSyncAttributeGroupsDefinition # (If "LDAP" was selected for AuthModule and you want to sync LDAP # attributes to otrs groups, define the following.) $Self->{'AuthSyncModule::LDAP::UserSyncAttributeGroupsDefinition'} = { # ldap attribute 'LDAPAttribute' => { # ldap attribute value 'LDAPAttributeValue1' => { # otrs group 'admin' => { # permission rw => 1, ro => 1, }, 'faq' => { rw => 0, ro => 1, }, }, }, 'LDAPAttribute2' => { 'LDAPAttributeValue' => { 'users' => { rw => 1, ro => 1, }, }, } }; # AuthSyncModule::LDAP::UserSyncAttributeRolesDefinition # (If "LDAP" was selected for AuthModule and you want to sync LDAP # attributes to otrs roles, define the following.) $Self->{'AuthSyncModule::LDAP::UserSyncAttributeRolesDefinition'} = { # ldap attribute 'LDAPAttribute' => { # ldap attribute value 'LDAPAttributeValue1' => { # otrs role 'role1' => 1, 'role2' => 1, }, }, 'LDAPAttribute2' => { 'LDAPAttributeValue1' => { 'role3' => 1, }, }, }; # UserTable $Self->{DatabaseUserTable} = 'users'; $Self->{DatabaseUserTableUserID} = 'id'; $Self->{DatabaseUserTableUserPW} = 'pw'; $Self->{DatabaseUserTableUser} = 'login'; # This is an example configuration for an LDAP auth. backend. # (take care that Net::LDAP is installed!) $Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP'; $Self->{'Customer::AuthModule::LDAP::Host'} = 'pdc.test.local'; $Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'dc=test,dc=local'; $Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName'; # Check if the user is allowed to auth in a posixGroup # (e. g. user needs to be in a group xyz to use otrs) # $Self->{'Customer::AuthModule::LDAP::GroupDN'} = 'cn=otrsallow,ou=posixGroups,dc=example,dc=com'; # $Self->{'Customer::AuthModule::LDAP::AccessAttr'} = 'memberUid'; # for ldap posixGroups objectclass (just uid) # $Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'UID'; # for non ldap posixGroups objectclass (full user dn) # $Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'DN'; # The following is valid but would only be necessary if the # anonymous user do NOT have permission to read from the LDAP tree $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'CN=otrs_ldap,CN=Users,DC=test,DC=local'; $Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'vali1982!'; # in case you want to add always one filter to each ldap query, use # this option. e. g. AlwaysFilter => '(mail=*)' or AlwaysFilter => '(objectclass=user)' # $Self->{'Customer::AuthModule::LDAP::AlwaysFilter'} = ''; # in case you want to add a suffix to each customer login name, then # you can use this option. e. g. user just want to use user but # in your ldap directory exists user@domain. # $Self->{'Customer::AuthModule::LDAP::UserSuffix'} = '@domain.com'; # Net::LDAP new params (if needed - for more info see perldoc Net::LDAP) $Self->{'Customer::AuthModule::LDAP::Params'} = { port => 389, timeout => 120, async => 0, version => 3, }; # Die if backend can't work, e. g. can't connect to server. $Self->{'Customer::AuthModule::LDAP::Die'} = 1; 2. I have problems at customer login using Active Directory credentials. I get panic no user data. In otrs log is the following error: [Fri May 7 09:35:52 2010][Notice][Kernel::System::CustomerAuth::LDAP::Auth] CustomerUser: ion (CN=ion,CN=Users,DC=test,DC=local) authentication ok (REMOTE_ADDR: 192.168.0.1). [Fri May 7 09:35:52 2010][Error][Kernel::System::CustomerUser::LDAP::CustomerUserDataGet][580] 000020D6: SvcErr: DSID-03100754, problem 5012 (DIR_ERROR), data 0 The config.pm for the customer sections is : # CustomerUser # (customer user ldap backend and settings) $Self->{CustomerUser} = { Name => 'LDAP Backend', Module => 'Kernel::System::CustomerUser::LDAP', Params => { # ldap host Host => 'pdc.test.local', # ldap base dn BaseDN => 'ou=test,o=local', # search scope (one|sub) SSCOPE => 'sub', # The following is valid but would only be necessary if the # anonymous user does NOT have permission to read from the LDAP tree UserDN => 'CN=otrs_ldap,CN=Users,DC=test,DC=local', UserPw => 'vali1982!', # in case you want to add always one filter to each ldap query, use # this option. e. g. AlwaysFilter => '(mail=*)' or AlwaysFilter => '(objectclass=user)' # AlwaysFilter => '', # if your frontend is e. g. iso-8859-1 and the charset of your # ldap server is utf-8, use this options (if not, ignore it) # SourceCharset => 'utf-8', # DestCharset => 'iso-8859-1', # die if backend can't work, e. g. can't connect to server Die => 1, # Net::LDAP new params (if needed - for more info see perldoc Net::LDAP) Params => { port => 389, timeout => 120, async => 0, version => 3, }, }, # customer uniq id CustomerKey => 'uid', # customer # CustomerID => 'mail', CustomerUserListFields => ['cn', 'mail'], CustomerUserSearchFields => ['uid', 'cn', 'mail'], CustomerUserSearchPrefix => '', CustomerUserSearchSuffix => '*', CustomerUserSearchListLimit => 250, CustomerUserPostMasterSearchFields => ['mail'], CustomerUserNameFields => ['givenname', 'sn'], # show not own tickets in customer panel, CompanyTickets CustomerUserExcludePrimaryCustomerID => 0, # add a ldap filter for valid users (expert setting) # CustomerUserValidFilter => '(!(description=gesperrt))', # admin can't change customer preferences AdminSetPreferences => 0, # cache time to life in sec. - cache any ldap queris CacheTTL => 0, Map => [ # note: Login, Email and CustomerID needed! # var, frontend, storage, shown (1=always,2=lite), required, storage-type, http-link, readonly # [ 'UserSalutation', 'Title', 'title', 1, 0, 'var', '', 0 ], # [ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var', '', 0 ], # [ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var', '', 0 ], # [ 'UserLogin', 'Username', 'uid', 1, 1, 'var', '', 0 ], # [ 'UserEmail', 'Email', 'mail', 1, 1, 'var', '', 0 ], # [ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var', '', 0 ], # # [ 'UserCustomerIDs', 'CustomerIDs', 'second_customer_ids', 1, 0, 'var', '', 0 ], # [ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var', '', 0 ], # [ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var', '', 0 ], # [ 'UserComment', 'Comment', 'description', 1, 0, 'var', '', 0 ], ], };

2 1

Accounting with bulk and automated tasks
by Ton Kersten 07 May '10

07 May '10

Hello all, I'm testing OTRS 2.4.7 to upgrade our old installation. In the past we created a very small patch to allow for time accounting with bulk actions and automated tasks (generic agents). We do use some shell script to create billing information for our customers, based on accounted ticket time. When I have a look in the time_accounting table I see that when I close a couple of tickets with a bulk action (same for the automated tasks) I see that every closed ticked gets the allotted time. So when I automatically close e.g. 1.000 tickets with a time unit of 10, all tickets get 10 resulting in 10.000 time units accounted. In our patch (that does not work well in 2.4.7) only the first ticket closed got the accounted time, keeping things fair (I think). Is there a way, anybody knows about, to count only the time for 1 ticket when in a bulk action or a generic agent? Searched the web and the admin manual without any success. Thanks in advance. Cheers, TonK -- AT Computing Linux/UNIXperts, opleiders & oplossers Tel +31 24 352 72 82 Kerkenbos 12-38 Tel cursussecretariaat: +31 24 352 72 72 6546 BE Nijmegen Fax +31 24 352 72 92 Postbus 1428 info(a)atcomputing.nl 6501 BK Nijmegen www.atcomputing.nl 'If you think education is expensive, then try ignorance.'

1 0

Accounted Time set via postmaster filters?
by TechFan 07 May '10

07 May '10

Hello all, We are implementing OTRS for our support department. We are very dependent on tracking issues and responding via email. We have set up some filters that allow us to update a ticket's status with an email response, but I am hoping to be able to do more. Is there a Header that can be set somehow that will automatically add to the Accounted time when a response is received via email? I would like to be able to add time to the ticket accounted time by putting some value in an email response. I don't see any headers in the postmaster filter (2.4.7 on windows) that can be set to accomplish this. Is there a hidden filter that can be set? In a related question, I am hoping to set the owner of new tickets created via email by putting the information in the body of the email. I do not see a way to use a value found by a filter as the data for the X-header I am trying to set. Is this possible? Thanks a lot!

1 0

New Ticket immediate close no notification
by Travis Simmons 06 May '10

06 May '10

Hey, When we create a ticket and immediately close it, is there a way to stop the agent notification for a new ticket on the queue? I know when we do an immediate close it doesn't send a notification to the client but it still does a SendAgentNotification Any ideas would be great. -- Travis Simmons --

1 0

Re: [otrs] 3. how to handle customers without email adress ? (Alexander Halle)
by Martignier, Philippe 06 May '10

06 May '10

Hi Alexander, This is what we did: - creation of a dummy user (in our case I named it : 00phone ) as 0 is one of the bigger key on the keyboard and you need at least two char to begin the auto research - creation of freefield named Phonefor00phone. That field will contain the phone number of the customer It is cleat that you loose a bit of the functionality of OTRS about the history as all non-email users are mixed, but I see no other solution at the time being. Cheers Philippe World Intellectual Property Organization Disclaimer: This electronic message may contain privileged, confidential and copyright protected information. If you have received this e-mail by mistake, please immediately notify the sender and delete this e-mail and all its attachments. Please ensure all e-mail attachments are scanned for viruses prior to opening or using.

3 3

how to insert images in an FAQ article
by Silver springs 06 May '10

06 May '10

Hi, Could anyone let me know how to insert images in an FAQ article . I was trying to copy and paste stuff but I could not paste the images into FAQ article. Please help. Thanks Winter

2 1

StaticDB question
by Gator SLP 06 May '10

06 May '10

Hello Wise people, Please can you advise on your experiences with RuntimeDB Vs StaticDB. We have a db currently consisting of 120,000 tickets. Do any of you have good/bad experiences using one or the other of the above? We curently use RuntimeDB but am looking into possibly changing to StaticDB. thanks for any tips. N

1 0