Message: 7 Date: Tue, 21 Sep 2004 23:28:16 +0200 From: Robert Kehl <[EMAIL PROTECTED]> Subject: Re: [otrs] Problem with LDAP (AD) lookups To: "User questions and discussions about OTRS." <[EMAIL PROTECTED]> Message-ID: <[EMAIL PROTECTED]> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Pete McDonnell schrieb: > AD Authentication is working OK, It isn't. <Pete> Really? I'm fairly sure it is... ie if I change the password on the AD server I am forced to log in with that new password immediately. Even if I scramble the password field in the OTRS table, it has no effect - I still must use the AD password to login. I'm fairly certain that basic authentication (no lookups involved) is functional. Please do let me know if I'm wrong though! > but I have to create an entry in the > customer table before a customer can login. That's not a big deal, > hopefully that will be working nicely in later versions :-) It should not be necessary at all. > What's not working is that when I select the Customer User page under the > Admin Area I only see the users that I've manually setup. I also get > messages such as the following in my system's messages log file. At around > 16:40 I changed the user to the Administrator of the AD tree to see if it > was a permissions issue that was causing the browsing to fail. I guess the user you're using to connect isn't equipped with a right's range broad enough. "cn=Pete McDonnell, ou=Users, dc=corp, dc=hiplab2003, dc=com" is probably not capable of reading all the necessary info. <Pete>As mentioned in the original post, I did change the account used by OTRS to the Administrator account as a test. I had very similar results. Try to create a designated reader user with no write access to any part of the AD tree, but all area read access (yes, except for the passwords). <Pete> I will investigate this tomorrow. Thanks for the suggestion. -Pete McDonnell Hip Interactive _______________________________________________ OTRS mailing list: otrs - Webpage: http://otrs.org/ Archive: http://lists.otrs.org/pipermail/otrs To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs Support oder Consulting für Ihr OTRS System? => http://www.otrs.de/
