Znuny Open Source Ticketsystem

my question is more along the lines of both roads lead to Rome.

That is to say, the practical difference between the popup window requesting login and the full web page login is cosmetic.

This is not entirely true. Pop up window is Apache's authentication request while full web page login is ...

Here is my config for customer AD SSO, and for the customer DB integration with AD.

...read carefully...you need to update with your specific domain settings.


I have read your code and mine and as I said SSO works fine. Now let's say I want to connect from my mobile phone, tablet or another ...

so you suggest something like this:

##LDAP Auth Users
$Self->{'Customer::AuthModule1'} = 'Kernel::System::CustomerAuth::HTTPBasicAuth';
$Self->{'Customer::AuthModule::HTTPBasicAuth::ReplaceRegExp1'} ='@TG.CORP';
$Self->{'Customer::AuthModule2'} = 'Kernel::System::CustomerAuth::LDAP';
$Self ...

I have achieved that machines that are not in AD forward me to index.pl whre I enter user/pass (which is what I wanted).
The problem is more likely to be within Apache than OTRS, though you'll want an additional Customer Auth backend.

I think you may want to make sure that apache has no fallback ...

Of course you do. The device isn't trusted on the network as being authenticated against AD.
I know and this seems logical.

However with current configuration I have achieved that machines that are not in AD forward me to index.pl whre I enter user/pass (which is what I wanted). But this works ...

I am able to succesfully configure LDAP auth with SSO with no problems. Works like a charm. Bu I stumpled upon bigger problem which I cannot solve. If I want to access OTRS page with my tablet/mobile phone or a computer that is not member of AD I get a popup window asking for authentication. Is ...