> I am following the official documentation, and trying to put
> in the code in
> Config.pm to set up LDAP authentication, but nothing is
> working. Is there a
> better document I can follow for noobs? Or any advice people
> can offer.
The documentation may be sketchy on this, but following the examples, we got it
working alright. I can't really help you as to what is wrong on your end, but
at least I can show you our configuration for LDAP lookups in a Microsoft
Windows Active Directory.
This is from /Kernel/Config.pm
## Set up LDAP for Customer authentication to the Frontend for customers.
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} = '172.23.100.12';
# The ou= is your NT Domain name. The dc= (there may be more than one) is
your AD domain name.
$Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'ou=domain, dc=domain,
dc=com';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName';
# Our AD requures a valid login to do LDAP searches. Use a generic one, not
admin, not your own.
$Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'username';
$Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'password';
## Set up LDAP for finding Customers when creating tickets in the Agent
Frontend.
$Self->{CustomerUser} = {
Name => 'Exchange LDAP',
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
# Parameters are basically the same as above.
Host => '172.23.100.12',
BaseDN => 'ou=domain, dc=domain, dc=com',
SSCOPE => 'sub',
UserDN => 'username',
UserPw => 'password',
# if your frontend is e. g. iso-8859-1 and the charset of your
# ldap server is utf-8, use this options (if not, ignore it)
### IMPORTANT FOR NON-ENGLISH USERS WITH SPECIAL CHARACTERS ###
# You *have* to specify the SourceCharset below, else OTRS will default
to
# iso8859-1 (I think), and special characters will be garbled. This
took me
# half a day to figure out.
SourceCharset => 'utf-8',
DestCharset => 'utf-8',
},
CustomerKey => 'sAMAccountName',
CustomerID => 'mail',
CustomerUserListFields => ['sAMAccountName', 'cn', 'mail'],
CustomerUserSearchFields => ['sAMAccountName', 'cn', 'mail'],
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['givenname', 'sn'],
Map => [
## Set-up the fields you want to import from LDAP. I'm still looking
## for a good source on what fields are available in LDAP.
# note: Login, Email and CustomerID needed!
# var, frontend, storage, shown, required, storage-type
# [ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ],
[ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ],
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ],
[ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ],
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ],
[ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ],
[ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var' ],
# [ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ],
# [ 'UserComment', 'Comment', 'description', 1, 0, 'var' ],
],
};
_______________________________________________
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
Support or consulting for your OTRS system?
=> http://www.otrs.com/
