I would like to exclude Computers, Groups, and any incorrect or temporary accounts from Customer LDAP Auth
I'm trying this command: #$Self->{'Customer::AuthModule::LDAP::AlwaysFilter'} = '()';
I've tried to put there AlwaysFilter => '(objectclass=user), AlwaysFilter => '(objectclass=computer), AlwaysFilter => '(objectcategory=CN=Person,CN=Schema,CN=Configuration,DC=Contoso,DC=ltd)
Still getting full list with computers, weird accounts, etc, whilst opening >Consumer users and searching using *
Can you help me with advice? AlwaysFilter being used for EXCLUDE "SOMETHING" from Auth LDAP? or INCLUDE?
LDAP Exclude computers and groups
Moderator: crythias
Re: LDAP Exclude computers and groups
It is a standard LDAP Search Filter
Some Infos: http://msdn.microsoft.com/en-us/library ... 85%29.aspx
http://www.faqs.org/rfcs/rfc2254.html
Some Infos: http://msdn.microsoft.com/en-us/library ... 85%29.aspx
http://www.faqs.org/rfcs/rfc2254.html
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
Re: LDAP Exclude computers and groups
Seems that you are using it in wrong place:
see: http://forums.otrs.org/viewtopic.php?f=61&t=5805#p23775
The place used in my Config.pm:peacefrog wrote:I'm trying this command: #$Self->{'Customer::AuthModule::LDAP::AlwaysFilter'} = '()';
(Using my little perl knowledge, I think it corresponds to: $Self->{CustomerUser}->{Params}->{AlwaysFilter} = '(&(objectCategory=User)(objectClass=User))';)$Self->{CustomerUser} = {
Host => (...)
(...)
Params => {
(...)
AlwaysFilter => '(&(objectCategory=User)(objectClass=User))'
(...)
see: http://forums.otrs.org/viewtopic.php?f=61&t=5805#p23775
Evaluation/pilot: OTRS 2.4.7 on Linux (CentOS 5.4) with MySQL database connected to an Active Directory for Agents and Customers.
Re: LDAP Exclude computers and groups
Thank you!