I have the authentication working to OpenLDAP but I don't have mapping
attributes required by OTRS to LDAP attributes. Also I have I would like
to have LDAP to OTRS communications over 636 not 389.
How do I integrate the Net::LDAPs into Config.pm, in perl:
$obj =
Net::LDAPS->new("$ldap_servers",port=>$ldap_port,verify=>$verify,cafile=>$cafile);
??
Relevant section of Config.pm
$Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';
$Self->{'AuthModule::LDAP::Host'} = 'mblauth01.mbl.edu';
$Self->{'AuthModule::LDAP::BaseDN'} = 'dc=mbl,dc=edu';
$Self->{'AuthModule::LDAP::UID'} = 'uid';
$Self->{'AuthModule::LDAP::SearchUserDN'} =
'uid=search,ou=users,dc=mbl,dc=edu';
$Self->{'AuthModule::LDAP::SearchUserPw'} = 'secret';
$Self->{'AuthModule::LDAP::Params'} = {
port => 389,
timeout => 120,
async => 0,
version => 3,
};
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} = 'mblauth01.mbl.edu';
$Self->{'Customer::AuthModule::LDAP::BaseDN'} =
'ou=users,dc=mbl,dc=edu';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'uid';
$Self->{'Customer::AuthModule::LDAP::SearchUserDN'} =
'uid=search,ou=users,dc=mbl,dc=edu';
$Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'secret';
$Self->{CustomerUser} = {
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
Host => 'mblauth01.mbl.edu',
BaseDN => 'dc=mbl,dc=edu',
SSCOPE => 'sub',
UserDN => 'uid=search,ou=users,dc=mbl,dc=edu',
UserPw => 'secret',
},
CustomerKey => 'cn',
CustomerID => '[customer_id]',
CustomerUserListFields => ['cn', 'mail'],
CustomerUserSearchFields => ['cn', 'mail'],
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['givenname', 'sn'],
Map => [
[ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ],
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ],
[ 'UserLogin', 'Login', 'cn', 1, 1, 'var' ],
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ],
[ 'UserCustomerID', 'CustomerID', 'cn', 0, 1, 'var' ],
],
};
}
Kent
--- Begin Message ---
Hi Kent,
> Hello,
>
> I read some posts about connecting OTRS to LDAP/AD on the backend for
> authentication. I haven't gotten this to work yet.
>
> System is CentOS5.
>
> What I have in Config.pm is:
>
> $Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';
> $Self->{'AuthModule::LDAP::Host'} = 'mblauth01.mbl.edu';
> $Self->{'AuthModule::LDAP::BaseDN'} = 'dc=mbl,dc=edu';
> $Self->{'AuthModule::LDAP::UID'} = 'cn';
> $Self->{'AuthModule::LDAP::SearchUserDN'} =
> 'uid=searchuser,ou=users,dc=mbl,dc=edu';
> $Self->{'AuthModule::LDAP::SearchUserPw'} = 'secret';
> $Self->{'AuthModule::LDAP::Params'} = {
> port => 389,
> timeout => 120,
> async => 0,
> version => 3,
> };
>
> Apache error logs:
>
> [Thu Dec 20 15:28:49 2007] [error] [client 127.0.0.1] Global symbol
> "$Self" requires explicit package name
> at /opt/otrs/bin/cgi-bin/../../Kernel/Config.pm line 110.
> [Thu Dec 20 15:28:49 2007] [error] [client 127.0.0.1] Global symbol
> "$Self" requires explicit package name
> at /opt/otrs/bin/cgi-bin/../../Kernel/Config.pm line 111.
> [Thu Dec 20 15:28:49 2007] [error] [client 127.0.0.1] Global symbol
> "$Self" requires explicit package name
> at /opt/otrs/bin/cgi-bin/../../Kernel/Config.pm line 112.
>
> [Thu Dec 20 15:28:49 2007] [error] [client 127.0.0.1] Compilation failed
> in require
> at /opt/otrs/bin/cgi-bin/../../Kernel/System/Web/InterfaceAgent.pm line
> 21.
> [Thu Dec 20 15:28:49 2007] [error] [client 127.0.0.1] BEGIN
> failed--compilation aborted
> at /opt/otrs/bin/cgi-bin/../../Kernel/System/Web/InterfaceAgent.pm line
> 21.
>
> [Thu Dec 20 15:28:49 2007] [error] [client 127.0.0.1] Compilation failed
> in require at /opt/otrs/bin/cgi-bin/index.pl line 41.
> [Thu Dec 20 15:28:49 2007] [error] [client 127.0.0.1] BEGIN
> failed--compilation aborted at /opt/otrs/bin/cgi-bin/index.pl line 41.
> [Thu Dec 20 15:28:49 2007] [error] [client 127.0.0.1] Premature end
> of script headers: index.pl
>
> Any suggestions?
If you haven't solved this from the OTRS list soon, please let me know and
I'll assist you off-list. I got this working on SL5 (same as CentOS5) but
being at work will need to help you outside of work hours.
Regards,
Michael.
--- End Message ---
_______________________________________________
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
Support or consulting for your OTRS system?
=> http://www.otrs.com/