Hi There could be a problem with following line. $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'ldap.lookup'; Please check the UserDN may be you have to specity the yourdomain_name\ldap..lookup. Thanks Vishal --- On Mon, 19/1/09, otrs-request@otrs.org wrote: From: otrs-request@otrs.org Subject: otrs Digest, Vol 4, Issue 44 To: otrs@otrs.org Date: Monday, 19 January, 2009, 3:32 PM Send otrs mailing list submissions to otrs@otrs.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.otrs.org/cgi-bin/listinfo/otrs or, via email, send a message with subject or body 'help' to otrs-request@otrs.org You can reach the person managing the list at otrs-owner@otrs.org When replying, please edit your Subject line so it is more specific than "Re: Contents of otrs digest..." Today's Topics: 1. OTRS and Active Directory (Wayne Scott) 2. Re: OTRS and Active Directory (Steven Carr) 3. Re: Queues' visibility to customers (Yasir M. Arsanukaev) 4. Re: OTRS and Active Directory (Steven Carr) 5. Re: Change queue without being owner (Lars J?rgensen) 6. Config Item and Location functionalities with ITSM 1.2.2. (Aysel Pamuk) ---------------------------------------------------------------------- Message: 1 Date: Mon, 19 Jan 2009 16:35:49 +1100 From: "Wayne Scott" Subject: [otrs] OTRS and Active Directory To: Message-ID: <225208CD50F5244A9612714639A719B4038E84E3@mel-mail.arrb.com.au> Content-Type: text/plain; charset="us-ascii" I've put more time into this than I can afford - but I'm trying hard to keep opensource alive in our workplace, so I'll ask here. We have: A WIN2K Domain controller at 192.168.1.10 A Debian (Lenny) box with a clean install of OTRS 2.3.3 (installed from source, not a prepacked deb file) The debian box is joined to the domain, which we'll call "company.com.au" Nothing I do will permit me to get customers authenticating via the AD. The relevant parts of the Config.pm: $Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP'; $Self->{'Customer::AuthModule::LDAP::Host'} = '192.168.1.10'; $Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'dc=company,dc=com,dc=au'; $Self->{'Customer::AuthModule::LDAP::UID'} = 'uid'; $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'ldap.lookup'; $Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'password'; $Self->{CustomerUser} = { Module => 'Kernel::System::CustomerUser::LDAP', Params => { Host => '192.168.1.10', BaseDN => 'DC=company,DC=com,DC=au', SSCOPE => 'sub', UserDN =>'ldap.lookup', UserPw => 'password', }, CustomerKey => 'uid', CustomerID => 'mail', CustomerUserListFields => ['sAMAccountName', 'cn', 'mail'], CustomerUserSearchFields => ['sAMAccountName', 'cn', 'mail'], CustomerUserSearchPrefix => '', CustomerUserSearchSuffix => '*', CustomerUserSearchListLimit => 250, CustomerUserPostMasterSearchFields => ['mail'], CustomerUserNameFields => ['givenname', 'sn'], Map => [ [ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ], [ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ], [ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ], [ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ], [ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ], ], }; The error I'm currently getting: Jan 19 16:20:03 ithlp OTRS-GenericAgent-03[7967]: [Error][Kernel::System::CustomerUser::LDAP::new][Line:144]: First bind failed! 80090308: LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 525, v893 Any ideas? ##################################################################################### This e-mail message has been scanned for Viruses and Content and cleared by MailMarshal #####################################################################################