Hi Deniz,
the LDAP configuration is mainly configured in the config.pm file, there is
quite a bit of customisation to do on this front.
Please find attached my blank LDAP config - I've seen many questions on LDAP
authentication and decided to compile a template for people to use to aid
them in implementing it, thanks to a lot of help I received myself during my
initial phases of setting up OTRS.
Some considerations you need to be aware of:
- The config is split into two groups, agents and customers
- Agents are differentiated by a exclusive group membership. This
prevents customers from accessing the agent interface.
- Agent passwords are synced with OTRS's relevant database fields,
this is a requirement (afaik)
- Customers are identified by any legitimate LDAP account.
Let us know how you get on.
Thanks,
David
On Wed, Feb 24, 2010 at 3:59 PM, Deniz Rende
Hello,
I've been trying to figure out how to integrate our company ldap with OTRS 2.4.7 . Here is what I did so far that did not give me any results: 0) Installed Net::LDAP Module 1) From Admin -> SysConfig 2) Search for LDAP 3) Frontend::Customer::Auth 4) Edited the Following:
- Customer::AuthModule::LDAP::Host (instead of default I added our ldap server) - Customer::AuthModule::LDAP::BaseDN (entered o=.....,o......) - Customer::AuthModule::LDAP::UID (left the default as UID) - Customer::AuthModule::LDAP::GroupDN (instead of the default I entered our cn, ,our ou=staff, our o's....) - Customer::AuthModule::LDAP::AccessAttr (left is as memberUid)
5) Created a test user in our ldap, and made sure that It was created (ldap searches from servers returned just fine) 6) Restarted the Apache server. 7) Tried to login with my testuser in https://otrshost/otrs/customer.pl
and the login failed. Tried to get the password, but otrs informed me no such user...
What else needs to be done for ldap integration? Do I need to go back to /opt/otrs/Kernel/Config.pm and add things or do the Web GUI method is enough?
Here is what I am using
Solaris 10 X86 Perl 5.10 Apache2 with SSL OTRS 2.4.7 check.Modules returns ok
-- Deniz Rende E-mail: deniz.rende@gmail.com Phone: +1 (224) 789-UNIX (8649) Mobile: +1 (816) 213-2139 Web: http://www.deniz-rende.com/blog
--------------------------------------------------------------------- OTRS mailing list: otrs - Webpage: http://otrs.org/ Archive: http://lists.otrs.org/pipermail/otrs To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
NEW! ENTERPRISE SUBSCRIPTION - Get more information NOW! http://www.otrs.com/en/support/enterprise-subscription/