Hello all, My message appears to have not hit the distribution list... So I am resending it.... So, I have OTRS working to authenticate with an AD domain. I understand you can use SSO through apache. I have apache loading: " LoadModule authnz_ldap_module modules/mod_authnz_ldap.so " I have put in Config.pm: " $Self->{'AuthModule'} = 'Kernel::System::Auth::HTTPBasicAuth'; " and " $Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::HTTPBasicAuth'; " So, my question is, can you authenticate against an AD domain (ldap) like I have working now, *AND* use SSO? If I am using SSO, can I NOT use LDAP authentication? I am just trying to make it so users in the AD domain don't have to put in their log in information at all. Can you do this? If you can, what am I doing wrong? Am I missing something in OTRS, or is it in Apache? Thank you, Adam Nielson