Many thanks for those comments Torsten.
Yes, I can see the merits of keeping everything accessible via LDAP - we'll
consider that option. However in the future we might need to use AD
elsewhere in the organisation, where we don't have much control over
content, hence there are some benefits in keeping most things in the
database.
It's good to know that OTRS can probably be as flexible as we need it to be
anyway.
Regards
Phil
On 30/05/2010 09:33, "Torsten Thau"
Hello Phil,
It is probably going to be easier for us to assemble this data for each customer, and directly update the OTRS database Œcustomer_user¹ table, than it is for us to write the fields into our eDir schema and then synchronise this with OTRS¹s tables.
Actually you don't need to snychronize your LDAP to your OTRS database. OTRS is able to retrieve the customer data directly from the LDAP (and may cache this data to increase performance if you like). However, since LDAP can be used in far more applications than OTRS, I'd recommend using the LDAP for storing customer data. At least you have only one data source which needs to be updated.
Given that we have a full Customer record in the customer_user table, is it possible for OTRS just to use LDAP for the purpose of customer authentication only, without us having to modify our eDir entries at all?
Yes, OTRS differentiate between customer data backend and customer authentication backend. Thus, you can use your LDAP for authentication and retrieve the customers data from your OTRS- or any other accessible database.
Also, if we have Customer data in Œcustomer_user¹ and are just using LDAP for Customer (and User/Agent) authentication, will we be able to edit individual users via the OTRS web interface? I assume there would be no reason why we couldn¹t also edit the Œcustomer_user¹ table directly if we preferred.
Also an agreement on this point. If you have the corresponding permissions, you may update a customer users data in die OTRS-database. If you are using a writable LDAP-backend (currently not available in default OTRS installations but possible) you may also update your customer users data directly in the LDAP.
kind regards, Torsten Thau