Wayne Scott wrote: > Steve, > > As per your 2 emails I gave your suggestions a try: > > Firstly I fully qualified the ldap user: > > $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'CN=ldap.lookup, > OU=Support, OU=IT, OU=Melbourne, OU=Staff, DC=company, DC=com, DC=au'; > > Dear Wayne
If I may please say so that might not be the place where you need to change it. But before you make any other change, could you please make sure that you can connect to your AD using the username you have chosen? Now, for the changes, this is what I have in my system and it is working #Enable LDAP authentication for Customers / Users $Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP'; $Self->{'Customer::AuthModule::LDAP::Host'} = 'ldapServer.admin.myOrganisation.net'; $Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'OU=Staff,DC=admin,DC=myOrganisation,DC=net'; $Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName'; #The following is valid but would only be necessary if the #anonymous user do NOT have permission to read from the LDAP tree $Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'MyOTRS_User'; $Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'PassWord'; #CustomerUser #(customer user database backend and settings) $Self->{CustomerUser} = { Module => 'Kernel::System::CustomerUser::LDAP', Params => { Host => 'ldapServer.admin.myOrganisation.net', BaseDN => 'OU=Staff,DC=admin,DC=myOrganisation,DC=net', SSCOPE => 'sub', UserDN =>'MyOTRS_User', UserPw => 'PassWord', }, # customer unique id CustomerKey => 'sAMAccountName', # customer # CustomerID => 'mail', CustomerUserListFields => ['sAMAccountName', 'cn', 'mail'], CustomerUserSearchFields => ['sAMAccountName', 'cn', 'mail'], CustomerUserSearchPrefix => '', CustomerUserSearchSuffix => '*', CustomerUserSearchListLimit => 2500, CustomerUserPostMasterSearchFields => ['mail'], CustomerUserNameFields => ['givenname', 'sn'], Map => [ # note: Login, Email and CustomerID needed! # var, frontend, storage, shown, required, storage-type #[ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ], [ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ], [ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ], [ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ], [ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ], [ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ], [ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var' ], #[ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ], #[ 'UserComment', 'Comment', 'description', 1, 0, 'var' ], ], }; Hope this helps _______________________________________________ OTRS mailing list: otrs - Webpage: http://otrs.org/ Archive: http://lists.otrs.org/pipermail/otrs To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs