Put this in your config file replace any XXXX with your Data
-----------------------------------------------------------------------
# start LDAP AUTH
# -----------------------------------------------------------------------
# OVERALL LDAP AUTH
$Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';
$Self->{'AuthModule::LDAP::Host'} = 'XXXX.XXXX.local';
$Self->{'AuthModule::LDAP::BaseDN'} = 'dc=XXXX,dc=local';
$Self->{'AuthModule::LDAP::UID'} = 'sAMAccountName';
$Self->{'AuthModule::LDAP::SearchUserDN'} =
'cn=XXXXX,cn=XXXX,dc=XXXX,dc=local';
$Self->{'AuthModule::LDAP::SearchUserPw'} = 'XXXX';
# CUSTOMER LDAP AUTH
$Self->{'Customer::AuthModule'} =
'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} = 'XXXX.XXXX.local';
$Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'dc=XXXX,dc=local';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName';
$Self->{'Customer::AuthModule::LDAP::SearchUserDN'} =
'cn=XXXX,cn=XXXX,dc=XXXX,dc=local';
$Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'XXXX';
# USER LDAP SETTINGS WHEN SUBMITTING A TICKET
$Self->{CustomerUser} = {
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
Host => 'XXXX.XXXX.local',
BaseDN => 'dc=XXXX,dc=local',
SSCOPE => 'sub',
UserDN => 'cn=XXXX,cn=Users,dc=XXXX,dc=local',
UserPw => 'XXXX',
},
CustomerKey => 'sAMAccountName',
CustomerID => 'sAMAccountName',
CustomerUserListFields => ['sAMAccountName', 'cn', 'mail'],
CustomerUserSearchFields => ['sAMAccountName', 'cn', 'mail'],
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['givenname', 'sn'],
Map => [
# note: Login, Email and CustomerID needed!
# var, frontend, storage, shown, required, storage-type
# [ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ],
[ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ],
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ],
[ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ],
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ],
[ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ],
[ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var' ],
# [ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ],
[ 'UserComment', 'Comment', 'description', 1, 0, 'var' ],
],
};
# -----------------------------------------------------------------------
# end LDAP AUTH
# -----------------------------------------------------------------------
-----Original Message-----
From: [email protected] [mailto:[email protected]] On Behalf Of Stefan
Michael Guenther
Sent: Wednesday, August 29, 2012 5:17 AM
To: [email protected]
Subject: Re: [otrs] LDAP: Agent-Login works, but Customer-Login does not.
Problem with AuthModule::LDAP::AlwaysFilter
Hi,
> $Self->{'Customer::AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
> There is no CustomerAuthSync Module
>
hm, now OTRS accepts the login name and the passwords, but since there isn't a
corresponding account in OTRS, the customer can not login.
If there isn't a snyc for customers, how should this work?
Stefan
---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
