[otrs] LDAP: Agent-Login works, but Customer-Login does not. Problem with AuthModule::LDAP::AlwaysFilter

Mon, 27 Aug 2012 14:48:34 -0700 

Hello,

I'm currently trying to setup the LDAP authentication for both agents and 
customers. While the agents can login without a problem, the customers can't. 
We checked the logfiles and found out, that OTRS uses 
"AuthModule::LDAP::AlwaysFilter" for agents and customers, although we have 
defined "Customer::AuthModule::LDAP::AlwaysFilter". Here are the relevant lines 
from the config file, did we make a type or misunderstood something in the 
configuration? BTW, we are using version 3.1.9

sub Load {
my $Self = shift;

$Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP'; 
$Self->{'AuthModule::LDAP::Host'} = '192.168.10.5'; 
$Self->{'AuthModule::LDAP::BaseDN'} = 'o=in-put';
$Self->{'AuthModule::LDAP::UID'} = 'uid'; 
$Self->{'AuthModule::LDAP::SearchUserDN'} = 'cn=otrsuser,o=in-put';
$Self->{'AuthModule::LDAP::SearchUserPw'} = 'xxxxxxx'; 
$Self->{'AuthModule::LDAP::AlwaysFilter'} = 
'(memberOf=cn=OTRS,ou=Gruppen,o=IN-PUT)';
$Self->{'AuthModule::LDAP::Params'} = { port => 389,timeout => 120,async => 0, 
version => 3,};
$Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
$Self->{'AuthSyncModule::LDAP::Host'} = '192.168.10.5';
$Self->{'AuthSyncModule::LDAP::BaseDN'} = 'o=in-put';
$Self->{'AuthSyncModule::LDAP::UID'} = 'uid';
$Self->{'AuthSyncModule::LDAP::SearchUserDN'} = 'cn=otrsuser,o=in-put';
$Self->{'AuthSyncModule::LDAP::SearchUserPw'} = 'xxxxx';
$Self->{'AuthSyncModule::LDAP::UserSyncMap'} = { UserFirstname => 
'givenName',UserLastname  => 'sn',UserEmail => 'mail', };
$Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = ['users',];
        
$Self->{'Customer::AuthModule'} = 'Kernel::System::Auth::LDAP'; 
$Self->{'Customer::AuthModule::LDAP::Host'} = '192.168.10.5'; 
$Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'ou=user,o=in-put';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'uid'; 
$Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'cn=otrsuser,o=in-put';
$Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'xxxxx'; 
$Self->{'Customer::AuthModule::LDAP::AlwaysFilter'} = '(sn=*)';
$Self->{'Customer::AuthModule::LDAP::Params'} = {port => 389, timeout => 120, 
async => 0, version => 3,};
$Self->{'Customer::AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
$Self->{'Customer::AuthSyncModule::LDAP::Host'} = '192.168.10.5';
$Self->{'Customer::AuthSyncModule::LDAP::BaseDN'} = 'o=in-put';
$Self->{'Customer::AuthSyncModule::LDAP::UID'} = 'uid';
$Self->{'Customer::AuthSyncModule::LDAP::SearchUserDN'} = 
'cn=otrsuser,o=in-put';
$Self->{'Customer::AuthSyncModule::LDAP::SearchUserPw'} = 'xxxxx';
$Self->{'Customer::AuthSyncModule::LDAP::UserSyncMap'} = {UserFirstname => 
'givenName', UserLastname  => 'sn',UserEmail     => 'mail', };
$Self->{'Customer::AuthSyncModule::LDAP::UserSyncInitialGroups'} = 
['customers',];
        

Thanks for any hints or suggestions,

Stefan
---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs

Reply via email to