Hi, there are any entries in the otrs log? regards, Reto Emily Flynn wrote:
Hi,
I can't seem to get LDAP authentication working for customer users.
It is a Windows 2000 domain with 2 domain controllers.
Can anyone see where I might be going wrong...?
Thanks
Emily
# ---------------------------------------------------- # # Customer LDAP Authentication # # ---------------------------------------------------- #
#Enable LDAP authentication for Customers / Users $Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP'; $Self->{'Customer::AuthModule::LDAP::Host'} = 'xx.xxx.xx.xx'; $Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'ou=user,ou=dublin,dc=int,dc=domain,dc=com'; $Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName';
#The following is valid but would only be necessary if the #anonymous user do NOT have permission to read from the LDAP tree # $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'otrsldap'; # $Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'password';
#CustomerUser #(customer user database backend and settings) $Self->{CustomerUser} = { Module => 'Kernel::System::CustomerUser::LDAP', Params => { Host => 'xx.xxx.xx.xx', BaseDN => 'ou=user,ou=dublin,dc=int,dc=domain,dc=com', SSCOPE => 'sub', UserDN =>'otrsldap', UserPw => 'password', }, # customer unique id CustomerKey => 'sAMAccountName', # customer # CustomerID => 'mail', CustomerUserListFields => ['sAMAccountName', 'cn', 'mail'], CustomerUserSearchFields => ['sAMAccountName', 'cn', 'mail'], CustomerUserSearchPrefix => '', CustomerUserSearchSuffix => '*', CustomerUserSearchListLimit => 250, CustomerUserPostMasterSearchFields => ['mail'], CustomerUserNameFields => ['givenname', 'sn'], Map => [ # note: Login, Email and CustomerID needed! # var, frontend, storage, shown, required, storage-type #[ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ], [ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ], [ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ], [ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ], [ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ], [ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ], #[ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var' ], #[ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ], #[ 'UserComment', 'Comment', 'description', 1, 0, 'var' ], ], };
#Add the following lines when only users are allowed to login if they reside in the spicified security group #Remove these lines if you want to provide login to all users specified in the User Base DN #example: $Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'ou=BaseOU, dc=example, dc=com'; $Self->{'Customer::AuthModule::LDAP::GroupDN'} = 'CN=OTRS_Users,OU=Security Groups,OU=Dublin,DC=int,DC=domain,DC=com'; $Self->{'Customer::AuthModule::LDAP::AccessAttr'} = 'member'; $Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'DN'
------------------------------------------------------------------------
--------------------------------------------------------------------- OTRS mailing list: otrs - Webpage: http://otrs.org/ Archive: http://lists.otrs.org/pipermail/otrs To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
NEW! ENTERPRISE SUBSCRIPTION - Get more information NOW! http://www.otrs.com/en/support/enterprise-subscription/