Welcome to the most active Linux Forum on the web.
Go Back > Forums > Linux Forums > Linux - Software
User Name
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.


  Search this Thread
Old 05-13-2009, 09:28 AM   #1
Registered: Apr 2002
Distribution: Ubuntu, Arch, freeBSD, Slackware
Posts: 210

Rep: Reputation: 30
Question OTRS LDAP customers login

Hi all,

I want to authenticate customers from the LDAP (Active Directory 2003), but I still get this error:

May 13 23:15:28 otrs OTRS-CGI-10[10929]: [Error][Kernel::System::CustomerAuth::LDAP::Auth][Line:284]: Search failed! base='cn=otrsallow,ou=Groups,dc=exemple,dc=ro', filter='(member=CN=Silviu Silaghi,OU=IT,DC=example,DC=ro)', Success
this is my Kernel/
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} = '';
$Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'dc=exemple,dc=ro';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName';

# Check if the user is allowed to auth in a posixGroup
# (e. g. user needs to be in a group xyz to use otrs)

$Self->{'Customer::AuthModule::LDAP::GroupDN'} = 'cn=otrsallow,ou=Groups,dc=exemple,dc=ro';
$Self->{'Customer::AuthModule::LDAP::AccessAttr'} = 'member';

# for ldap posixGroups objectclass (just uid)

$Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'DN';

# for non ldap posixGroups objectclass (full user dn)
# $Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'DN';
# The following is valid but would only be necessary if the
# anonymous user do NOT have permission to read from the LDAP tree

$Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'otrs';
$Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'otrs';

# in case you want to add always one filter to each ldap query, use
# this option. e. g. AlwaysFilter => .(mail=*). or AlwaysFilter => .(objectclass=user).

$Self->{'Customer::AuthModule::LDAP::AlwaysFilter'} = '';

# in case you want to add a suffix to each customer login name, then
# you can use this option. e. g. user just want to use user but
# in your ldap directory exists user@domain.

# Net::LDAP new params (if needed - for more info see perldoc Net::LDAP)

$Self->{'Customer::AuthModule::LDAP::Params'} = {
port => 389,
timeout => 120,
async => 0,
version => 3,
I have created the user otrs in AD with password otrs and the group otrsallow

I have ran out of ideas

Thanks in advanced

Last edited by sqn; 05-13-2009 at 09:31 AM.
Old 05-13-2009, 05:04 PM   #2
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1984Reputation: 1984Reputation: 1984Reputation: 1984Reputation: 1984Reputation: 1984Reputation: 1984Reputation: 1984Reputation: 1984Reputation: 1984Reputation: 1984
well if the search is failing then you should try to recreate what you believe to be the right search outside of the app using tools like ldapsearch.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
OTRS and LDAP auth Ammad Linux - General 0 04-14-2008 03:56 PM
LDAP login failure boxyzzy Red Hat 1 04-09-2008 05:13 PM
ldap+ftp same login?? venki Linux - Newbie 3 03-13-2007 04:23 AM
OTRS. Any experience? seems down. pachakutek General 3 01-19-2007 04:22 PM
Ldap login problem matarodi Debian 0 09-11-2005 05:22 AM > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 02:59 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration