Hi Chaps,<br><br>I&#39;m trying to authenticate agents on my OTRS implementation (OTRSforwin) by adopting the LDAP template like so: (Windows Server 2003 Active Directory domain controller)<br><br>   ########## Start of LDAP Config ##########<br>
<br><br>    # This is an example configuration for an LDAP auth. backend.<br>    # (take care that Net::LDAP is installed!)<br>    $Self-&gt;{&#39;AuthModule&#39;} = &#39;Kernel::System::Auth::LDAP&#39;;<br>    $Self-&gt;{&#39;AuthModule::LDAP::Host&#39;} = &#39;myserver.domain.local&#39;;<br>
    $Self-&gt;{&#39;AuthModule::LDAP::BaseDN&#39;} = &#39;dc=domain,dc=local&#39;;<br>    $Self-&gt;{&#39;AuthModule::LDAP::UID&#39;} = &#39;sAMAccountName&#39;;<br><br>    # Check if the user is allowed to auth in a posixGroup<br>
    # (e. g. user needs to be in a group xyz to use otrs)<br>    $Self-&gt;{&#39;AuthModule::LDAP::GroupDN&#39;} = &#39;cn=OTRS_Agents,ou=OTRS Admins,dc=domain,dc=local&#39;;<br>    $Self-&gt;{&#39;AuthModule::LDAP::AccessAttr&#39;} = &#39;member&#39;;<br>
    <br>    # for ldap posixGroups objectclass (just uid)<br>    #$Self-&gt;{&#39;AuthModule::LDAP::UserAttr&#39;} = &#39;UID&#39;;<br>    # for non ldap posixGroups objectclass (with full user dn)<br>    $Self-&gt;{&#39;AuthModule::LDAP::UserAttr&#39;} = &#39;DN&#39;;<br>
<br>    # The following is valid but would only be necessary if the<br>    # anonymous user do NOT have permission to read from the LDAP tree<br>    $Self-&gt;{&#39;AuthModule::LDAP::SearchUserDN&#39;} = &#39;cn=OTRS Searcher,ou=OTRS LDAP Searcher,dc=domain,dc=local&#39;;<br>
    $Self-&gt;{&#39;AuthModule::LDAP::SearchUserPw&#39;} = &#39;myotrspassword&#39;;<br><br>    # in case you want to add always one filter to each ldap query, use<br>    # this option. e. g. AlwaysFilter =&gt; &#39;(mail=*)&#39; or AlwaysFilter =&gt; &#39;(objectclass=user)&#39;<br>
    $Self-&gt;{&#39;AuthModule::LDAP::AlwaysFilter&#39;} = &#39;&#39;;<br><br>    # in case you want to add a suffix to each login name, then<br>    # you can use this option. e. g. user just want to use user but<br>    # in your ldap directory exists user@domain.<br>
    #$Self-&gt;{&#39;AuthModule::LDAP::UserSuffix&#39;} = &#39;@<a href="http://domain.com">domain.com</a>&#39;;<br><br>    # Net::LDAP new params (if needed - for more info see perldoc Net::LDAP)<br>    $Self-&gt;{&#39;AuthModule::LDAP::Params&#39;} = {<br>
        port =&gt; 389,<br>        timeout =&gt; 120,<br>        async =&gt; 0,<br>        version =&gt; 3,<br>    };<br><br><br><br>Output from Log File:<br><br><br><br>[Mon Aug  3 19:51:40 2009][Notice][Kernel::System::Auth::LDAP::Auth] User: David Holder (CN=David Holder,OU=IT,DC=domain,DC=local) authentication ok (REMOTE_ADDR: 127.0.0.1).<br>
[Mon Aug  3 19:51:40 2009][Error][Kernel::System::User::UserLookup][680] No UserID found for &#39;David Holder&#39;!<br>[Mon Aug  3 19:51:40 2009][Error][Kernel::System::User::UserLookup][680] No UserID found for &#39;David Holder&#39;!<br>
[Mon Aug  3 19:51:40 2009][Notice][Kernel::System::User::GetUserData] Panic! No UserData for user: &#39;David Holder&#39;!!!<br><br><br>Does anyone have any ideas what is wrong with my config?<br><br>Your help is most appreciated.<br>
<br>David<br>