Hi, all - I think I'm wandering down the right path here, but I thought I'd ask, in an attempt to not get lost too much. I've managed to integrate OTRS with Active Directory, and that works (sort-of) alright. It needs some polishing, but the functionality is there. I've created Roles in OTRS that correspond with groups in AD. The idea is, make an Agent a member of its respective groups in AD, to which there's a matching role in OTRS for that AD group - and subsequently, queue - that the user will be able to interact with. Thus, I believe I can control access to each queue based on AD group membership. My question is, however, can I use AuthModule::LDAP::GroupDN more than once? If you're still following me, I'd like to use AuthModule::LDAP::GroupDN once for each AD group present, so I don't need to maintain a separate list of groups in AD, to signify which users can have access to what, outside of the one-AD-group-per-OTRS-queue system that I'm shooting for. Am I going about this the right way? In theory, this all looks great :) Thanks! -dant