Hi Uwe, On Mon, Sep 08, 2003 at 11:22:37AM +0200, Ortner, Uwe wrote:
viewing customer information from a LDAP database works fine, I can see Userid, Username and Email in OTRS.
Now I want my customer to logon using the ldap information provided. Due my LDAP database is an addressbook there is no password attribute available. What can I do, or is there something I missunderstood?
If there is no password attribute in your LDAP tree then you can't use the LDAP tree for logon (authentication).
-=> I would add the password attribute to the LDAP tree.
OK, works fine ...
Fine! ;)
But User cannot change their password from within the customer interface - is this in general not possible?
BTW: Authenticated Users do have self write-permission on their password field in LDAP
It's wanted. Because there should be no way (IMO) for other applications to write into your LDAP. It's critical, beause some time you will get an inconsistent directory if each application is writting into your directory. IMO.
Uwe
Martin -- Martin Edenhofer - <martin at edenhofer.de> - http://martin.edenhofer.de/ -- "The number of Unix installations has grown to 10, with more expected." The Unix Programmer's Manual, 2nd Edition, June 1972