Hi Andrew,
On Thu, Mar 13, 2003 at 12:58:07PM -0500, ahall coxnews.com wrote:
> > The perl crypt() "e. g. crypt($Pw, $User)" is used for the encrypted password
> > in the DB.
>
> I did see that in the SetPassword function. so $User is the salt?
Yes.
> > Tell me more about the used authentication system and I can show you the best
> > way. Is there a LDAP interface? Do you sync the users into the OTRS DB?
>
> No I don't have LDAP. :( What I want to do is take the encrypted password
> from our system password (/etc/shadow) and insert that into
> system_users.pw, that way I can control otrs access from our central
> user management tool.
>
> The issue I am having is that if I take an encrypted password and put it
> into the db, it will not authenticate. My first impression is that the
> decrypt password function is using the wrong salt. From what I have
> gathered so far it appears that the first two characters of the username
> are used as the salt.
>
> So I guess what I am basicaly looking for is a way to take an encrypted
> password that was created with perls crypt() i.e. crypt($pw, &random_salt)
> and use that in otrs.
In Kernel/System/Auth/ are the auth. modules for the agent interface. I would
use the Kernel/System/Auth/DB.pm and modify the Auth() like you want. If
Auth() returns 1 then the user gets access to OTRS.
And I would disable to set the user password with OTRS. To do so add the following
to Kernel/Config.pm and the agent can't change the passowrd:
[...]
$Self->{LostPassword} = 0;
$Self->{PreferencesGroups}->{Password} = {
Colum => 'Other Options',
Label => 'Change Password',
Type => 'Password',
Activ => 0,
};
[...]
> Andrew
Martin
--
Martin Edenhofer - <martin at edenhofer.de> - http://martin.edenhofer.de/
--
Old programmers never die. They just branch to a new address.
_______________________________________________
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
