On 16.04.2010, at 16:51, Ruslan wrote:

$Self->{'Customer::AuthModule::LDAP::UID'} = 'uid';

make sure when using Active Directory uid is replaced with samaccountname.

$Self->{'Customer::AuthModule::LDAP::GroupDN'} = 'cn=otrs_allow_Customer,ou=IT,ou=AnotherOU,dc=mercury,dc=ru';
$Self->{'Customer::AuthModule::LDAP::AccessAttr'} = 'memberUid';

Is the Atribute memberUid or member or memberOf ??? Ask your LDAP Admin for a LDIF

   # for ldap posixGroups objectclass (just uid)
   $Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'UID';
   # for non ldap posixGroups objectclass (full user dn)
# $Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'DN';

   # The following is valid but would only be necessary if the
   # anonymous user do NOT have permission to read from the LDAP tree
   $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'otrs';
   $Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'mypassword';

This last two infos are responsible for the error .... the first connection to the server failed.

You usually need to provide the full DN here ...

Try with Active Directory first the principle name instead ... otrs@mercury.ru in your case probably.

Nils Leideck

--
Nils Leideck
Senior Consultant

nils.leideck@leidex.net
nils.leideck@otrs.com

http://webint.cryptonode.de / a Fractal project