Hi,
That's what I'm having in the Config.pm for testing:
# ---------------------------------------------------- #
# Config for Costumer DB Backend and Auth SL 240809 #
# ---------------------------------------------------- #
#Enable DB authentication for Customers / Users
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::DB';
$Self->{'Customer::AuthModule::DB::Table'} = 'customer_user';
$Self->{'Customer::AuthModule::DB::CustomerKey'} = 'login';
$Self->{'Customer::AuthModule::DB::CustomerPassword'} = 'pw';
#CustomerUser DB
#(customer user ldap backend and settings)
$Self->{CustomerUser} = {
Name => 'Datenbank',
Module => 'Kernel::System::CustomerUser::DB',
Params => {
Table => 'customer_user',
},
# customer unique id
CustomerKey => 'login',
# customer #
CustomerID => 'customer_id',
CustomerValid => 'valid_id',
CustomerUserListFields => ['first_name', 'last_name', 'email'],
CustomerUserSearchFields => ['login', 'first_name', 'last_name', 'email'],
CustomerUserSearchPrefix => '',
CustomerUserSearchSuffix => '*',
CustomerUserSearchListLimit => 250,
CustomerUserPostMasterSearchFields => ['email'],
CustomerUserNameFields => ['first_name', 'last_name'],
CustomerUserEmailUniqCheck => 1,
Map => [
# note: Login, Email and CustomerID needed!
# var, frontend, storage, shown (1=always,2=lite), required,
storage-type, http-127
[ 'UserSalutation', 'Salutation', 'salutation', 1, 0, 'var', '', 0 ],
[ 'UserFirstname', 'Firstname', 'first_name', 1, 1, 'var', '', 0 ],
[ 'UserLastname', 'Lastname', 'last_name', 1, 1, 'var', '', 0 ],
[ 'UserLogin', 'Username', 'login', 1, 1, 'var', '', 0 ],
[ 'UserPassword', 'Password', 'pw', 0, 1, 'var', '', 0 ],
[ 'UserEmail', 'Email', 'email', 0, 1, 'var', '', 0 ],
# [ 'UserEmail', 'Email', 'email', 1, 1,
#
'var','$Env{"CGIHandle"}?Action=AgentTicketCompose&ResponseID=1&TicketID=$Data{"[
'UserCustomerID', 'CustomerID', 'customer_id', 0, 1, 'var', '', 0 ],
# [ 'UserCustomerIDs', 'CustomerIDs', 'customer_ids', 1, 0, 'var', '', 0
],
[ 'UserComment', 'Comment', 'comments', 1, 0, 'var', '', 0 ],
[ 'ValidID', 'Valid', 'valid_id', 0, 1, 'int', '', 0 ],
],
};
# ---------------------------------------------------- #
# Config for Costumer LDAP Backend and Auth SL 160809 #
# ---------------------------------------------------- #
#Enable LDAP authentication for Customers / Users
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} = 'bockw2k8dc1.bock.lan';
$Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'ou=
structur,dc=bock,dc=lan';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName';
#The following is valid but would only be necessary if the
#anonymous user do NOT have permission to read from the LDAP tree
$Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'domain\user';
$Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'password';
#CustomerUser1 LDAP
#(customer user ldap backend and settings)
$Self->{CustomerUser1} = {
Name => 'BOCK.LAN',
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
Host => 'bockw2k8dc1.bock.lan',
BaseDN => 'OU= structur,DC=bock,DC=lan',
SSCOPE => 'sub',
UserDN =>'domain\user',
UserPw => 'password',
SourceCharset => 'utf-8',
DestCharset => 'utf-8',
Params => {
port => 389,
timeout => 120,
async => 0,
version => 3,
},
},
# customer unique id
CustomerKey => 'sAMAccountName',
# customer #
CustomerID => 'mail',
CustomerUserListFields => ['cn', 'mail'],
CustomerUserSearchFields => ['sAMAccountName', 'cn', 'mail'],
CustomerUserSearchPrefix => '',
CustomerUserSearchSuffix => '*',
CustomerUserSearchListLimit => 250,
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['cn'],
Map => [
# note: Login, Email and CustomerID needed!
# var, frontend, storage, shown, required, storage-type
#[ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ],
[ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ],
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ],
[ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ],
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ],
[ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ],
[ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var' ],
#[ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ],
#[ 'UserComment', 'Comment', 'description', 1, 0, 'var' ],
],
};
I'm using CustomerUser and CustomerUser1, when using CustomerUser1 and
CustomerUser2 I'm having 3 backends, probably the CustomerUser default.
With that Config the LDAP Auth works but not the DB Auth and in the Agent Login
-> Customers I can view the LDAP and edit the DB Customers.
When switching the positions in the Config.pm having DB at the end, the DB
Customer login works, probably because the $Self->{'Customer::AuthModule'} =
'Kernel::System::CustomerAuth::DB'; is the last entry.
My guess is that I have to integrate $Self->{'Customer::AuthModule'} =
'Kernel::System::CustomerAuth::DB'; into $Self->{CustomerUser1} but how?
Mit freundlichen Gruessen
i.A. Stephan Lang
Systembetreuung
Tel.: +49 9180 189-276
Fax.: +49 9180 189-55276
E-Mail: stephan.l...@bockonline.de
Internet: http://www.bockonline.de
-----Original Message-----
From: otrs-boun...@otrs.org [mailto:otrs-boun...@otrs.org] On Behalf Of savitra
sirohi
Sent: Mittwoch, 26. August 2009 05:54
To: User questions and discussions about OTRS.
Subject: Re: [otrs] Using LDAP and DB Customer Backend and Authentification
Stephen,
You need to have a separate block (CustomerUser2) for the database auth. Do you
have that?
Thanks,
Savitra Sirohi
Nucsoft OSS Labs
http://www.osslabs.biz
On 8/26/09, Stephan Lang <stephan.l...@bockonline.de> wrote:
> Hi @all,
>
>
>
> I'm trying to use LDAP and MySQL DB as customer Backend and to
> authenticate the user.
>
> I've added LDAP config as CustomerUser1 and $Self->{'AuthModule'} =
> 'Kernel::System::Auth::LDAP'; and all the required settings.
>
> Customer Login via LDAP works perfect, but a DB Customer can't login.
>
> Error message reads:
>
> CustomerUser: stephan.l...@bockonline.de authentification failed, no
> LDAP entry found!BaseDN='ou=structur,dc=bock,dc=lan',
> Filter='(samaccountname=stephan.l...@bockonline.de)', (REMOTE_ADDR:
> 192.168.24.33).
>
> But the Customer exists in the DB, and I can edit the DB Customers and
> view the LDAP Customers as well.
>
>
>
> I've already found an article (in German):
> http://www.otrs-forum.de/viewtopic.php?f=15&t=641
>
> It describes changes in /opt/otrs/Kernel/System/CustomerAuth.pm
> required to switch from one AuthModule to the other but the article is
> from 2006 and the file provided is very different from the version in
> the current OTRS Version and my perl knowledge is mostly none existing.
>
> Maybe someone has a similar configuration working and can point out
> the necessary changes or provide a config file?
>
>
>
>
>
> Regards
>
> Stephan Lang
> System administrator
>
> OTRS: 2.4.3 (rpm)
>
> OS: openSUSE 10.3 without X
>
> DB: MySQL 5.0.45
>
>
>
> ----------------------------------------------------------------------
> --
> Bock 1 GmbH & Co. KG
> An der Heide 17
> 92353 Postbauer-Heng
>
> Sitz: Postbauer-Heng
> Amtsgericht Nuernberg, HRA 11 240
> pers. haft. Geschaeftsfuehrer: Hermann Bock Bock 1 Verwaltungs GmbH
> Sitz: Postbauer-Heng
> Amtsgericht Nuernberg, HRB 93 10
> Geschaeftsfuehrer: Harald Meyer, Klaus Stepper
>
> Diese E-Mail enthaelt moeglicherweise vertrauliche und/oder rechtlich
> geschuetzte Informationen. Wenn Sie nicht der richtige Adressat sind
> oder diese E-Mail irrtuemlich erhalten haben, informieren Sie bitte
> sofort den Absender und vernichten Sie diese E-Mail. Das unerlaubte
> Kopieren sowie die unbefugte Weitergabe dieser E-Mail ist nicht gestattet.
>
> This email may contain confidential and/or privileged information. If
> you are not the intended recipient (or have received this email in
> error) please notify the sender immediately and destroy this email.
> Any unauthorized copying, disclosure or distribution of the material
> in this email is strictly forbidden.
>
>
---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
NEW! ENTERPRISE SUBSCRIPTION - Get more information NOW!
http://www.otrs.com/en/support/enterprise-subscription/
Click
https://www.mailcontrol.com/sr/6AcFd9pqwD3TndxI!oX7Uj+Zd8hgYGYDU1Cf089ToDJmJaXwNzp+SZcAYUetVfOoq9ApH41y+VajfskgLULbMA==
to report this email as spam.
------------------------------------------------------------------------
Bock 1 GmbH & Co. KG
An der Heide 17
92353 Postbauer-Heng
Sitz: Postbauer-Heng
Amtsgericht Nuernberg, HRA 11 240
pers. haft. Geschaeftsfuehrer: Hermann Bock
Bock 1 Verwaltungs GmbH
Sitz: Postbauer-Heng
Amtsgericht Nuernberg, HRB 93 10
Geschaeftsfuehrer: Harald Meyer, Klaus Stepper
Diese E-Mail enthaelt moeglicherweise vertrauliche und/oder rechtlich
geschuetzte Informationen. Wenn Sie nicht der richtige Adressat sind oder diese
E-Mail irrtuemlich erhalten haben, informieren Sie bitte sofort den Absender
und vernichten Sie diese E-Mail. Das unerlaubte Kopieren sowie die unbefugte
Weitergabe dieser E-Mail ist nicht gestattet.
This email may contain confidential and/or privileged information. If you are
not the intended recipient (or have received this email in error) please notify
the sender immediately and destroy this email. Any unauthorized copying,
disclosure or distribution of the material in this email is strictly forbidden.
---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
NEW! ENTERPRISE SUBSCRIPTION - Get more information NOW!
http://www.otrs.com/en/support/enterprise-subscription/
