RE: [otrs] CustomerAuth LDAP problem
At first glance i cannot see any errors in your config. It looks pretty correct to me. The Agent-Frontend is the admin interface usually found as http://.../index.pl. If you log on to the agent frontend, are you able to create a new ticket and selecte a customer (click on PhoneView and then on Search Customer) or do you get errors there too? Thomas
-----Original Message----- From: Vladimir Gerdjikov [mailto:vladimir.gerdjikov@hebros.bg] Sent: Wednesday, March 17, 2004 1:59 PM To: User questions and discussions about OTRS. Subject: Re: [otrs] CustomerAuth LDAP problem
Thomas Nilsen wrote:
Vladimir,
It is the Agent front-end that returns the Panic screen?
Screen with "Panic! No UserData!!!" is sreen from http://..../custoler.pl (is this "Agent font-end screen"?)
If you can log on to the agent front-end, then the first part of your LDAP configuration seems correct. The next step is to debug the customer section of the LDAP configuration.
Debug message (from syslog) is: [Notice][Kernel::System::CustomerAuth::LDAP::Auth] CustomerUser: otrs logged in (REMOTE_ADDR: 10.2.1.70), but, I can't login.
Could you post the entire LDAP section of your Kernel/Config.pm file? (Just remove/change user/password entries). I would makes it easier to tell if there is a mistake in the config or not.
But basically you need to configure CustomerKey and CustomerID in the CustomerUser section. It is probably here your config is wrong...
Regards, Thomas
10x again. You are very kind and tolerant. Here is my configuration:
# LDAP settings for the agents' AUTH #$Self->{'AuthModule'} = 'Kernel::System::Auth::DB'; $Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP'; $Self->{'AuthModule::LDAP::Host'} = 'heb-hdo-dc-03.hebros.bg'; $Self->{'AuthModule::LDAP::BaseDN'} = 'dc=hebros,dc=bg'; $Self->{'AuthModule::LDAP::UID'} = 'sAMAccountName'; $Self->{'AuthModule::LDAP::SearchUserDN'} = 'cn=OTRS,ou=Service users,ou=HeadOffice,dc=hebros,dc=bg'; $Self->{'AuthModule::LDAP::SearchUserPw'} = 'pass'; $Self->{'AuthModule::LDAP::AlwaysFilter'} = ''; $Self->{'AuthModule::LDAP::Params'} = { port => 389, timeout => 120, async => 0, version => 3, };
# LDAP settings for the CustomerUsers AUTH $Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP'; $Self->{'Customer::AuthModule::LDAP::Host'} = 'heb-hdo-dc-03.hebros.bg'; $Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'DC=hebros,DC=bg'; $Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName'; $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'cn=OTRS,ou=Service users,ou=HeadOffice,dc=hebros,dc=bg'; $Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'pass';
# LDAP settings for the CustomerUsers' DATA $Self->{CustomerUser} = { Name => 'LDAP Backend', Module => 'Kernel::System::CustomerUser::LDAP', Params => { Host => 'heb-hdo-dc-03.hebros.bg', BaseDN => 'dc=hebros,dc=bg', SSCOPE => 'sub', UserDN => 'cn=OTRS,ou=Service Users,ou=HeadOffice,dc=hebros,dc=bg', UserPw => 'pass', AlwaysFilter => '', Params => { port => 389, timeout => 120, async => 0, version => 3, }, },
# customer CustomerKey => 'sAMAccountName', CustomerID => 'mail', CustomerUserListFields => ['sAMAccountName', 'cn', 'mail'], CustomerUserSearchFields => ['sAMAccountName', 'cn', 'mail'], CustomerUserPostMasterSearchFields => ['mail'], CustomerUserNameFields => ['givenname', 'sn'], Map => [ [ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ], [ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ], [ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ], [ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ], [ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ], [ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ], [ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var' ], [ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ], [ 'UserComment', 'Comment', 'description', 1, 0, 'var' ], ], };
-- Best regards, Vladimir Gerdjikov
Communication and NOS Manager, HebrosBank Head Office, +359 32/903435, +359 888 578 458 KeyID:BC821E9B from http://wwwkeys.uk.pgp.net Fingerprint: 503C 54EE C1B0 B446 DD84 5A3A 4E05 4D62 BC82 1E9B
_______________________________________________ OTRS mailing list: otrs - Webpage: http://otrs.org/ Archive: http://lists.otrs.org/pipermail/otrs To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs Support oder Consulting für Ihr OTRS System? => http://www.otrs.de/
DISCLAIMER: This message contains information that may be privileged or confidential and is the property of the Roxar Group. It is intended only for the person to whom it is addressed. If you are not the intended recipient, you are not authorised to read, print, retain, copy, disseminate, distribute, or use this message or any part thereof. If you receive this message in error, please notify the sender immediately and delete all copies of this message.
Thomas Nilsen wrote:
At first glance i cannot see any errors in your config. It looks pretty correct to me. The Agent-Frontend is the admin interface usually found as http://.../index.pl. If you log on to the agent frontend, are you able to create a new ticket and selecte a customer (click on PhoneView and then on Search Customer) or do you get errors there too?
I'm sorry, sorry, sorry..... for all troubles. I'm idiot! The key was that "SSCOPE => 'sub'" was "SSCOPE => 'sum'. Yes, not "sub", but "sum". Bloody syntax error!!! Everything is fine now.... p.s. what do you thing about little "Active Dyrectory integration Howto" (not LDAP, but AD)? -- Best regards, Vladimir Gerdjikov Communication and NOS Manager, HebrosBank Head Office, +359 32/903435, +359 888 578 458 KeyID:BC821E9B from http://wwwkeys.uk.pgp.net Fingerprint: 503C 54EE C1B0 B446 DD84 5A3A 4E05 4D62 BC82 1E9B
participants (2)
-
Thomas Nilsen -
Vladimir Gerdjikov