LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 05-13-2009, 08:28 AM   #1
sqn
Member
 
Registered: Apr 2002
Distribution: Ubuntu, Arch, freeBSD, Slackware
Posts: 210

Rep: Reputation: 30
Question OTRS LDAP customers login


Hi all,


I want to authenticate customers from the LDAP (Active Directory 2003), but I still get this error:

Code:
May 13 23:15:28 otrs OTRS-CGI-10[10929]: [Error][Kernel::System::CustomerAuth::LDAP::Auth][Line:284]: Search failed! base='cn=otrsallow,ou=Groups,dc=exemple,dc=ro', filter='(member=CN=Silviu Silaghi,OU=IT,DC=example,DC=ro)', Success
this is my Kernel/Config.pl:
Code:
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} = 'dc.exemple.ro';
$Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'dc=exemple,dc=ro';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName';

# Check if the user is allowed to auth in a posixGroup
# (e. g. user needs to be in a group xyz to use otrs)

$Self->{'Customer::AuthModule::LDAP::GroupDN'} = 'cn=otrsallow,ou=Groups,dc=exemple,dc=ro';
$Self->{'Customer::AuthModule::LDAP::AccessAttr'} = 'member';

# for ldap posixGroups objectclass (just uid)

$Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'DN';

# for non ldap posixGroups objectclass (full user dn)
# $Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'DN';
# The following is valid but would only be necessary if the
# anonymous user do NOT have permission to read from the LDAP tree

$Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'otrs';
$Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'otrs';

# in case you want to add always one filter to each ldap query, use
# this option. e. g. AlwaysFilter => .(mail=*). or AlwaysFilter => .(objectclass=user).

$Self->{'Customer::AuthModule::LDAP::AlwaysFilter'} = '';

# in case you want to add a suffix to each customer login name, then
# you can use this option. e. g. user just want to use user but
# in your ldap directory exists user@domain.

# Net::LDAP new params (if needed - for more info see perldoc Net::LDAP)

$Self->{'Customer::AuthModule::LDAP::Params'} = {
port => 389,
timeout => 120,
async => 0,
version => 3,
};
I have created the user otrs in AD with password otrs and the group otrsallow

I have ran out of ideas

Thanks in advanced

Last edited by sqn; 05-13-2009 at 08:31 AM.
 
Old 05-13-2009, 04:04 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981
well if the search is failing then you should try to recreate what you believe to be the right search outside of the app using tools like ldapsearch.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
OTRS and LDAP auth Ammad Linux - General 0 04-14-2008 02:56 PM
LDAP login failure boxyzzy Red Hat 1 04-09-2008 04:13 PM
ldap+ftp same login?? venki Linux - Newbie 3 03-13-2007 03:23 AM
OTRS. Any experience? otrs.org seems down. pachakutek General 3 01-19-2007 03:22 PM
Ldap login problem matarodi Debian 0 09-11-2005 04:22 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 01:04 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration