Hi,

Please assist – I am trying to integrate into AD.  Firstly, can someone verify that I have the correct understanding of the process:

-          Created a user sajitk in OTRS – this is the same name as my AD account but the passwords are different.

-          Am I correct in assuming that I do not need to manually create all the users in OTRS and that they will be created when they logon for the first time (agent sync process)?

I have placed the following code into the config.pm file

    $Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';

    $Self->{'AuthModule::LDAP::Host'} = 'devimon';

    $Self->{'AuthModule::LDAP::BaseDN'} = 'dc=rewards,dc=co,dc=za';

    $Self->{'AuthModule::LDAP::UID'} = 'name';

 

    $Self->{'AuthModule::LDAP::Charset'} = 'iso-8859-1';

 

    $Self->{'AuthModule::LDAP::Params'} = {

        port => 389,

        timeout => 120,

        async => 0,

        version => 3,

    };

 

    $Self->{UserSyncLDAPMap} = {

        DB -> LDAP

        UserFirstname => 'givenName',

        UserLastname => 'sn',

        UserEmail => 'mail',

    };

 

I am getting the following error in the log file:

User: sajitk (DC=sajitk,DC=rewards.co.za,CN=MicrosoftDNS,CN=System,DC=rewards,DC=co,DC=za) authentication failed: '80090308: LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 525, v893

 

It appears to me that the user is being recognized in AD but it is not being authenticated.  I am using the correct credentials.

 

Please help – this is getting very frustrating.

 

Thanks

Sajit

This e-mail message has been scanned for Viruses and Content and cleared by MailMarshal