[SOLVED] Need help to connect Znuny to Ldap

Moderator: crythias

Post Reply
Coatmor
Znuny newbie
Posts: 6
Joined: 13 Nov 2020, 14:47
Znuny Version: OTRS 6 CE
Real Name: Coatmor

[SOLVED] Need help to connect Znuny to Ldap

Post by Coatmor »

Hi,

I am working in a company where we have a working OTRS 6 CE in production. Now we are configuring the latest version of Znuny and are stuck at the Ldap connection configuration. We copied our configuration from our production with minor changes concerning accounts and passwords.

Anyway, we encounter a 500 error when connecting to the machines (we have two fronts sharing a same storage for

Code: Select all

/opt/otrs
). Everything comes back in order when we restore our previous Config.pm file.

The people who did our production servers configuration no longer work with us and therefore cannot help.

Are we missing something ? Are there any prerequisites we might have forgotten like streams to open or modules to enable?

The Ldap machine can be pinged from our fronts. Otherwise, Znuny original configuration mostly hasn't been touched.

We are thinking it might be linked to certificates but we don't know yet how they were generated on our OTRS. Here is an example of what we have in Config.pm :

Code: Select all

    $Self->{'AuthModule::LDAP::Params'} = {
        cafile => '/etc/pki/ca-trust/source/anchors/ca.crt',
        verify => 'required',
        port => 636,
        timeout => 120,
        async => 0,
        version => 3,
    };
If the certificates are enables, root@localhost can connect but then encounter the 500 error. If they are disabled (and links to our LDAP load-balancer changed from ldaps to ldap), it cannot connect at all (credentials are not recognized).

Any ideas?

Many thanks for your help!
Last edited by Coatmor on 08 Jul 2021, 16:46, edited 1 time in total.
root
Administrator
Posts: 3934
Joined: 18 Dec 2007, 12:23
Znuny Version: Znuny and Znuny LTS
Real Name: Roy Kaldung
Company: Znuny
Contact:

Re: Need help to connect Znuny to Ldap

Post by root »

Hi,

every 500 Internal server error will leave a hint in the httpd error_log. What's in yours?

- Roy
Znuny and Znuny LTS running on CentOS / RHEL / Debian / SLES / MySQL / PostgreSQL / Oracle / OpenLDAP / Active Directory / SSO

Use a test system - always.

Do you need professional services? Check out https://www.znuny.com/

Do you want to contribute or want to know where it goes ?
wurzel
Znuny guru
Posts: 3224
Joined: 08 Jul 2010, 22:25
Znuny Version: x.x.x
Real Name: Florian

Re: Need help to connect Znuny to Ldap

Post by wurzel »

Hi,

most likely a syntax error (missing bracket)

it helps to check the logs (see privious post) and/or show your complete config

Flo
OTRS 8 SILVER (Prod)
OTRS 8 auf Debian 11 (Test)
Znuny 7.x latest version testing auf Debian 11

-- Ich beantworte keine Forums-Fragen PN - No PN please

I won't answer to unfriendly users any more. A greeting and regards are just polite.
Coatmor
Znuny newbie
Posts: 6
Joined: 13 Nov 2020, 14:47
Znuny Version: OTRS 6 CE
Real Name: Coatmor

Re: Need help to connect Znuny to Ldap

Post by Coatmor »

Hi all,

Thank you for your quick answers. We finally had a call with a Ldap specialist and, among other things (there was a certificate problem), the LDAP modules were not activated on Znuny.

I mark this topic as solved.
Post Reply