$Self->{'Customer::AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP'; There is no CustomerAuthSync Module http://forums.otterhub.org/viewtopic.php?f=60&t=16543 You probably don't want this? $Self->{'Customer::AuthModule::LDAP::AlwaysFilter'} = '(sn=*)'; You have no CustomerUser information. 3.1: http://doc.otrs.org/3.1/en/html/customer-user-backend.html#customer-backend-... 3.1: http://doc.otrs.org/3.1/en/html/auth-backends.html#customer-auth-backend-lda... 3.1: http://doc.otrs.org/3.1/en/html/auth-backends.html#agent-auth-backend-ldap On Mon, Aug 27, 2012 at 5:42 PM, Stefan Michael Guenther < s.guenther@in-put.de> wrote:

Hello,

I'm currently trying to setup the LDAP authentication for both agents and customers. While the agents can login without a problem, the customers can't. We checked the logfiles and found out, that OTRS uses "AuthModule::LDAP::AlwaysFilter" for agents and customers, although we have defined "Customer::AuthModule::LDAP::AlwaysFilter". Here are the relevant lines from the config file, did we make a type or misunderstood something in the configuration? BTW, we are using version 3.1.9

sub Load { my $Self = shift;

$Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP'; $Self->{'AuthModule::LDAP::Host'} = '192.168.10.5'; $Self->{'AuthModule::LDAP::BaseDN'} = 'o=in-put'; $Self->{'AuthModule::LDAP::UID'} = 'uid'; $Self->{'AuthModule::LDAP::SearchUserDN'} = 'cn=otrsuser,o=in-put'; $Self->{'AuthModule::LDAP::SearchUserPw'} = 'xxxxxxx'; $Self->{'AuthModule::LDAP::AlwaysFilter'} = '(memberOf=cn=OTRS,ou=Gruppen,o=IN-PUT)'; $Self->{'AuthModule::LDAP::Params'} = { port => 389,timeout => 120,async => 0, version => 3,}; $Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP'; $Self->{'AuthSyncModule::LDAP::Host'} = '192.168.10.5'; $Self->{'AuthSyncModule::LDAP::BaseDN'} = 'o=in-put'; $Self->{'AuthSyncModule::LDAP::UID'} = 'uid'; $Self->{'AuthSyncModule::LDAP::SearchUserDN'} = 'cn=otrsuser,o=in-put'; $Self->{'AuthSyncModule::LDAP::SearchUserPw'} = 'xxxxx'; $Self->{'AuthSyncModule::LDAP::UserSyncMap'} = { UserFirstname => 'givenName',UserLastname => 'sn',UserEmail => 'mail', }; $Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = ['users',];

$Self->{'Customer::AuthModule'} = 'Kernel::System::Auth::LDAP'; $Self->{'Customer::AuthModule::LDAP::Host'} = '192.168.10.5'; $Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'ou=user,o=in-put'; $Self->{'Customer::AuthModule::LDAP::UID'} = 'uid'; $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'cn=otrsuser,o=in-put'; $Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'xxxxx'; $Self->{'Customer::AuthModule::LDAP::AlwaysFilter'} = '(sn=*)'; $Self->{'Customer::AuthModule::LDAP::Params'} = {port => 389, timeout => 120, async => 0, version => 3,}; $Self->{'Customer::AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP'; $Self->{'Customer::AuthSyncModule::LDAP::Host'} = '192.168.10.5'; $Self->{'Customer::AuthSyncModule::LDAP::BaseDN'} = 'o=in-put'; $Self->{'Customer::AuthSyncModule::LDAP::UID'} = 'uid'; $Self->{'Customer::AuthSyncModule::LDAP::SearchUserDN'} = 'cn=otrsuser,o=in-put'; $Self->{'Customer::AuthSyncModule::LDAP::SearchUserPw'} = 'xxxxx'; $Self->{'Customer::AuthSyncModule::LDAP::UserSyncMap'} = {UserFirstname => 'givenName', UserLastname => 'sn',UserEmail => 'mail', }; $Self->{'Customer::AuthSyncModule::LDAP::UserSyncInitialGroups'} = ['customers',];

Thanks for any hints or suggestions,

Stefan --------------------------------------------------------------------- OTRS mailing list: otrs - Webpage: http://otrs.org/ Archive: http://lists.otrs.org/pipermail/otrs To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs