Hi, As far as I know, every agent has to be added in the lokal databe to get the credentials from your AD. So if you realy have so many users it up to you to write a script for your Database and import the users through an sql script into you Oracle DB. Maybe there is another way, but I don´t know one.
Have fun ;)
Mit freundlichen Grüßen / Kind regards
Markus Moj
IT Infrastructure & Services
TimoCom Soft- und Hardware GmbH
In der Steele 2
D-40599 Düsseldorf
Tel: +49 211 88 26 80 14
Fax: +49 211 88 26 70 14
eMail: m...@timocom.com
Internet: www.timocom.com
Geschäftsführer: Jens Thiermann, Gunther Matzaitis
Amtsgericht Düsseldorf, HRB 34489
From: Theofanis Katsiaounis <epi...@yahoo.com>
To: otrs@otrs.org
Date: 11.02.2010 13:04
Subject: [otrs] OTRS and Active Directory Authentication/Synchronization
Sent by: otrs-boun...@otrs.org
Hello. I am kinda new to OTRS and i am trying to setup a server for my
company. I managed to install OTRS (version 2.3 for ubunu) and make it use
an Oracle Database (using Ubuntu Server 9.10 and DBD::Oracle etc etc etc).
Up to there everything OK. Otrs works fine i logged int with the default
usr/passwd. I configured AD authentication and it works fine. If i create
the users myself i can use no password and then login with my windows
credential. What i cannot do is import AD users to the OTRS DB so i
everytime i add a user n AD to have it synched to OTRS. Also with some
settings i got to a point where for half of my (AD) users OTRS did not
login due to wrong usr/poasswd and some of them gave panic no user data .
My settings are
$Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';
$Self->{'AuthModule::LDAP::Host'} = 'host.domain.com';
$Self->{'AuthModule::LDAP::BaseDN'} = 'dc=domain, dc=com';
$Self->{'AuthModule::LDAP::UID'} = 'sAMAccountName';
$Self->{'AuthModule::LDAP::SearchUserDN'} = 'user';
$Self->{'AuthModule::LDAP::SearchUserPw'} = 'pass';
With these i can use AD just for authentication but not for synching.To
synch i used:
#Start of LDAP Synchronization
$Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
$Self->{'AuthSyncModule::LDAP::Host'} = 'host.domain.com';
$Self->{'AuthSyncModule::LDAP::BaseDN'} = 'dc=domain, dc=com';
$Self->{'AuthSyncModule::LDAP::UID'} = 'sAMAccountName';
$Self->{'AuthSyncModule::LDAP::SearchUserDN'} = 'user';
$Self->{'AuthSyncModule::LDAP::SearchUserPw'} = 'pass';
$Self->{'AuthSyncModule::LDAP::UserSyncMap'} = {
# DB -> LDAP
UserFirstname => 'givenName',
UserLastname => 'sn',
UserEmail => 'mail',
};
# AuthSyncModule::LDAP::UserSyncInitialGroups
# (sync following group with rw permission after initial create of
first agent
# login)
$Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = [
'users',
];
But no luck. Please i could use some help with this because i have many
users. I will add them to groups myself but i need the import feature.
Thanks in advance.
P.S. I only want to authenticate agents and not customers.
---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
NEW! ENTERPRISE SUBSCRIPTION - Get more information NOW!
http://www.otrs.com/en/support/enterprise-subscription/
<<inline: graycol.gif>>
<<inline: ecblank.gif>>
--------------------------------------------------------------------- OTRS mailing list: otrs - Webpage: http://otrs.org/ Archive: http://lists.otrs.org/pipermail/otrs To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs NEW! ENTERPRISE SUBSCRIPTION - Get more information NOW! http://www.otrs.com/en/support/enterprise-subscription/
