Message: 7
Date: Tue, 21 Sep 2004 23:28:16 +0200
From: Robert Kehl
AD Authentication is working OK,
It isn't. <Pete> Really? I'm fairly sure it is... ie if I change the password on the AD server I am forced to log in with that new password immediately. Even if I scramble the password field in the OTRS table, it has no effect - I still must use the AD password to login. I'm fairly certain that basic authentication (no lookups involved) is functional. Please do let me know if I'm wrong though!
but I have to create an entry in the customer table before a customer can login. That's not a big deal, hopefully that will be working nicely in later versions :-)
It should not be necessary at all.
What's not working is that when I select the Customer User page under the Admin Area I only see the users that I've manually setup. I also get messages such as the following in my system's messages log file. At around 16:40 I changed the user to the Administrator of the AD tree to see if it was a permissions issue that was causing the browsing to fail.
I guess the user you're using to connect isn't equipped with a right's range broad enough. "cn=Pete McDonnell, ou=Users, dc=corp, dc=hiplab2003, dc=com" is probably not capable of reading all the necessary info. <Pete>As mentioned in the original post, I did change the account used by OTRS to the Administrator account as a test. I had very similar results. Try to create a designated reader user with no write access to any part of the AD tree, but all area read access (yes, except for the passwords). <Pete> I will investigate this tomorrow. Thanks for the suggestion. -Pete McDonnell Hip Interactive