Re: [otrs] OTRS and Active Directory

Free BSD Mon, 19 Jan 2009 17:04:14 -0800

Wayne Scott wrote:
> Steve,
>
> As per your 2 emails I gave your suggestions a try:
>
> Firstly I fully qualified the ldap user:
>
> $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'CN=ldap.lookup,
> OU=Support, OU=IT, OU=Melbourne, OU=Staff, DC=company, DC=com, DC=au';
>
>   
Dear Wayne


If I may please say so that might not be the place where you need to
change it.

But before you make any other change, could you please make sure that
you can connect to your AD using the username you have chosen?

Now, for the changes, this is what I have in my system and it is working

#Enable LDAP authentication for Customers / Users
  $Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
  $Self->{'Customer::AuthModule::LDAP::Host'} =
'ldapServer.admin.myOrganisation.net';
  $Self->{'Customer::AuthModule::LDAP::BaseDN'} =
'OU=Staff,DC=admin,DC=myOrganisation,DC=net';
  $Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName';

#The following is valid but would only be necessary if the
#anonymous user do NOT have permission to read from the LDAP tree
  $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'MyOTRS_User';
  $Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'PassWord';

#CustomerUser
#(customer user database backend and settings)
    $Self->{CustomerUser} = {
      Module => 'Kernel::System::CustomerUser::LDAP',
      Params => {
      Host => 'ldapServer.admin.myOrganisation.net',
      BaseDN => 'OU=Staff,DC=admin,DC=myOrganisation,DC=net',
      SSCOPE => 'sub',
      UserDN =>'MyOTRS_User',
      UserPw => 'PassWord',
    },
# customer unique id
    CustomerKey => 'sAMAccountName',
    # customer #
    CustomerID => 'mail',
    CustomerUserListFields => ['sAMAccountName', 'cn', 'mail'],
    CustomerUserSearchFields => ['sAMAccountName', 'cn', 'mail'],
    CustomerUserSearchPrefix => '',
    CustomerUserSearchSuffix => '*',
    CustomerUserSearchListLimit => 2500,
    CustomerUserPostMasterSearchFields => ['mail'],
    CustomerUserNameFields => ['givenname', 'sn'],
    Map => [
      # note: Login, Email and CustomerID needed!
      # var, frontend, storage, shown, required, storage-type
      #[ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ],
      [ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ],
      [ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ],
      [ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ],
      [ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ],
      [ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ],
      [ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var' ],
      #[ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ],
      #[ 'UserComment', 'Comment', 'description', 1, 0, 'var' ],
    ],
  };




Hope this helps
_______________________________________________
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs

Re: [otrs] OTRS and Active Directory

Reply via email to