Jeff Davis wrote:
New to OTRS...
Currently evaluating to see if this system is right for our
organization. It's installed, now trying to get LDAP functionality.
We use openldap.
Steps in docs are a bit unclear to me as to what needs to be done and
where to enable LDAP Auth & sync, and methods for testing/debugging my
configuration.
Thanks in advance for any pointers
_______________________________________________
It wasn't easy for me either. A few things I learned (as a newbie):
There are both users and customers. You need to enable LDAP lookups for
each one separately. I chose to enable LDAP lookups for customers but
have not (yet) done so for users. There are only a few of us users.
Here's what I did to make it work. Hope this helps.
</edg>
# ---------------------------------------------------- #
# Auth Settings for Customers #
# ---------------------------------------------------- #
# This is an example configuration for an LDAP auth. backend.
# (take care that Net::LDAP is installed!)
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} = 'ldap001.mycompany.com';
$Self->{'Customer::AuthModule::LDAP::BaseDN'} =
'ou=People,dc=mycompany,dc=com';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'uid';
# Net::LDAP new params (if needed - for more info see perldoc Net::LDAP)
$Self->{'Customer::AuthModule::LDAP::Params'} = {
port => 389,
timeout => 120,
async => 0,
version => 3,
};
#CustomerUser
#(customer user database backend and settings)
$Self->{CustomerUser} = {
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
Host => 'ldap001.mycompany.com',
BaseDN => 'OU=People,DC=mycompany,DC=com',
SSCOPE => 'sub',
UserDN =>'uid=mycompanyu,cn=config',
UserPw => 'bindpw',
},
# customer unique id
CustomerKey => 'uid',
# customer #
CustomerID => 'mail',
CustomerUserListFields => ['uid', 'cn', 'mail'],
CustomerUserSearchFields => ['uid', 'cn', 'mail'],
CustomerUserSearchPrefix => '',
CustomerUserSearchSuffix => '*',
CustomerUserSearchListLimit => 250,
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['givenname', 'sn'],
Map => [
# note: Login, Email and CustomerID needed!
# var, frontend, storage, shown, required, storage-type
#[ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ],
[ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ],
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ],
[ 'UserLogin', 'Login', 'uid', 1, 1, 'var' ],
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ],
[ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ],
[ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var' ],
#[ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ],
#[ 'UserComment', 'Comment', 'description', 1, 0, 'var' ],
],
};
# Die if backend can't work, e. g. can't connect to server.
$Self->{'Customer::AuthModule::LDAP::Die'} = 1;
$Self->{UserSyncLDAPMap} = {
Firstname => 'givenName'
, Lastname => 'sn'
, Email => 'mail'
};
}
_______________________________________________
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
Support or consulting for your OTRS system?
=> http://www.otrs.com/
