Hi,
Ok I do the same. Process as follow: (you can see
http://lists.otrs.org/pipermail/otrs/2009-November/029206.html)
Create roles in admin area (or by script in /opt/otrs/scripts).
Assign roles to groups ...
And to assign AD groups to roles put this in Config.pm
# synchro roles OTRS with AD groups
$Self->{'AuthSyncModule::LDAP::AccessAttr'} = 'member';
# $Self->{'AuthSyncModule::LDAP::UserAttr'} = 'UID';
#For AD use 'DN'
$Self->{'AuthSyncModule::LDAP::UserAttr'} = 'DN';
# AuthSyncModule::LDAP::UserSyncInitialGroups
# (sync following group with rw permission after initial create of
first agent login)
$Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = [
'users',
];
$Self->{'AuthSyncModule::LDAP::UserSyncRolesDefinition'} = {
# ldap group
'cn=ADGroup1,ou=ou1,dc=domain,dc=local' => {
# otrs role
'OTRSRole' => 1,
},
'cn=ADGroup2,ou=ou2,dc=domain,dc=local' => {
# otrs role
'OTRSRole2' => 1,
},
...
And finish last role by } and not },
And put
};
on last line.
You can write also :
'cn=ADGroup1,ou=ou1,dc=domain,dc=local' => {
# otrs role
'OTRSRole' => 1,
'OTRSRole2' => 1,
'OTRSRole3' => 0,
},
Le 23/04/2010 14:19, Ruslan a écrit :
It's gonna help but:
Affter agent auth i need to asign role to agents according AD
Group Membership...
and there is something about 15 agent roles...
--
---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
NEW! ENTERPRISE SUBSCRIPTION - Get more information NOW!
http://www.otrs.com/en/support/enterprise-subscription/
--
Guillaume REHM
Centre de Ressources Informatiques
Responsable Sécurité du Système d'Information (RSSI)
Bibliothèque Nationale et Universitaire de Strasbourg
5 rue du Maréchal Joffre
BP 51029
67070 Strasbourg
tél: 03 88 25 28 23
fax: 03 88 25 28 03
mail: guillaume.rehm@bnu.fr
web: http://www.bnu.fr