i managed to get it working. found answer here: http://doc.otrs.org/3.0/en/html/auth-backends.html

you do NOT need to manually add the users to otrs db. i was just using the old modules, and was missing a section. now all works fine.

On Thu, Mar 31, 2011 at 5:46 PM, Gerald Young <crythias@gmail.com> wrote:
Agents need to be added manually before they can be authenticated. 

On Thu, Mar 31, 2011 at 10:21 AM, Neil Simpson <nadsys@gmail.com> wrote:
Hello All,

i've been trying to google for an answer to this likely easy issue:

i configured otrs-ldap to fetch users from AD but i get "Panic, user authenticated but no user data can be found in OTRS DB!! Perhaps the user is invalid."

my config.pm file looks like this:
$Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';
    $Self->{'AuthModule::LDAP::Host'} = 'BLANKED.com';
    $Self->{'AuthModule::LDAP::BaseDN'} = 'DC=BLANKED,DC=com';
    $Self->{'AuthModule::LDAP::UID'} = 'sAMAccountName';

    # Check if the user is allowed to auth in a posixGroup
    # (e. g. user needs to be in a group xyz to use otrs)
    $Self->{'AuthModule::LDAP::GroupDN'} = 'CN=BLANKED,CN=Users,DC=BLANKED,DC=com';
    $Self->{'AuthModule::LDAP::AccessAttr'} = 'member';

    # The following is valid but would only be necessary if the
    # anonymous user do NOT have permission to read from the LDAP tree
    $Self->{'AuthModule::LDAP::SearchUserDN'} = 'BLANKED@BLANKED.com';
    $Self->{'AuthModule::LDAP::SearchUserPw'} = 'BLANKED;

    $Self->{'AuthModule::LDAP::UserLowerCase'} = 0;

    $Self->{UserSyncLDAPMap} = {
        # DB -> LDAP
        UserFirstname => 'givenName',
        UserLastname => 'sn',
        UserEmail => 'mail',
    };

    $Self->{'AuthModule::LDAP::Die'} = 1;


in the log file i get:
[Notice][Kernel::System::Auth::LDAP::Auth] User: BLANKED (CN=BLANKED,CN=Users,DC=360t,DC=com) authentication ok (REMOTE_ADDR: 192.168.0.blanked).
Mar 31 13:12:22 otrs-test OTRS-CGI-10[4855]: [Error][Kernel::System::User::UserLookup][Line:746]: No UserID found for 'BLANKED'!
Mar 31 13:12:22 otrs-test OTRS-CGI-10[4855]: [Error][Kernel::System::User::UserLookup][Line:746]: No UserID found for 'BLANKED'!
Mar 31 13:12:22 otrs-test OTRS-CGI-10[4855]: [Notice][Kernel::System::User::GetUserData] Panic! No UserData for user: 'BLANKED'!!!

so it's authenticating but due to the fact the user doesn't exist in the otrs db it wont allow me to login. I thought this sync occured from the "usersyncldapmap" command above.

any help much appreciated as i dont want to use the workaround which is to create a user in otrs before they login for first time. that's just stupid and annoying.

thanks

Neil



---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs


---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs