
Hi, Ok I do the same. Process as follow: (you can see http://lists.otrs.org/pipermail/otrs/2009-November/029206.html) Create roles in admin area (or by script in /opt/otrs/scripts). Assign roles to groups ... And to assign AD groups to roles put this in Config.pm # synchro roles OTRS with AD groups $Self->{'AuthSyncModule::LDAP::AccessAttr'} = 'member'; # $Self->{'AuthSyncModule::LDAP::UserAttr'} = 'UID'; #For AD use 'DN' $Self->{'AuthSyncModule::LDAP::UserAttr'} = 'DN'; # AuthSyncModule::LDAP::UserSyncInitialGroups # (sync following group with rw permission after initial create of first agent login) $Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = [ 'users', ]; $Self->{'AuthSyncModule::LDAP::UserSyncRolesDefinition'} = { # ldap group 'cn=ADGroup1,ou=ou1,dc=domain,dc=local' => { # otrs role 'OTRSRole' => 1, }, 'cn=ADGroup2,ou=ou2,dc=domain,dc=local' => { # otrs role 'OTRSRole2' => 1, }, ... And finish last role by } and not }, And put }; on last line. You can write also : 'cn=ADGroup1,ou=ou1,dc=domain,dc=local' => { # otrs role 'OTRSRole' => 1, 'OTRSRole2' => 1, 'OTRSRole3' => 0, }, Le 23/04/2010 14:19, Ruslan a écrit :
It's gonna help but: Affter agent auth i need to asign role to agents according AD Group Membership... and there is something about 15 agent roles...
--
--------------------------------------------------------------------- OTRS mailing list: otrs - Webpage: http://otrs.org/ Archive: http://lists.otrs.org/pipermail/otrs To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
NEW! ENTERPRISE SUBSCRIPTION - Get more information NOW! http://www.otrs.com/en/support/enterprise-subscription/
-- Guillaume REHM Centre de Ressources Informatiques Responsable Sécurité du Système d'Information (RSSI) Bibliothèque Nationale et Universitaire de Strasbourg 5 rue du Maréchal Joffre BP 51029 67070 Strasbourg tél: 03 88 25 28 23 fax: 03 88 25 28 03 mail: guillaume.rehm@bnu.fr web: http://www.bnu.fr