System::Auth::Sync::LDAP::Sync][Line:177]: Search failed!

[rolandhb]

Hallo,

Ich habe ein Problem mit der LDAP Anbindung der Agenten.
OTRS 2.4.7 Debian System

Jun 14 16:11:54 mars OTRS-CGI-10[2255]: [Notice][Kernel::System::Auth::LDAP::Auth] User: myloginname (CN=nachname Roland,OU=admins,DC=xxxxxxx,DC=de) authentication ok (REMOTE_ADDR: 127.0.1.1).

Jun 14 16:11:54 mars OTRS-CGI-10[2255]: [Error][Kernel::System::Auth::Sync::LDAP::Sync][Line:177]: Search failed! (dc=xxxxxx,dc=de) filter='(saAMAccountName=myloginname)' 0000202B: RefErr: DSID-031006E0, data 0, 1 access points#012#011ref 1: 'xxxxxx.de'#012#000
Jun 14 16:11:54 mars OTRS-CGI-10[2255]: [Error][Kernel::System::User::UserLookup][Line:696]: No UserID found for 'myloginname'!
Jun 14 16:11:54 mars OTRS-CGI-10[2255]: [Error][Kernel::System::User::UserLookup][Line:696]: No UserID found for 'myloginname'!
Jun 14 16:11:54 mars OTRS-CGI-10[2255]: [Notice][Kernel::System::User::GetUserData] Panic! No UserData for user: 'myloginname'!!!

Meine Config.pm


# --
# Kernel/Config.pm - Config file for OTRS kernel
# Copyright (C) 2001-2009 xxx, http://otrs.org/
# --
# $Id: Config.pm.dist,v 1.21 2009/02/16 12:01:43 tr Exp $
# --
# This software comes with ABSOLUTELY NO WARRANTY. For details, see
# the enclosed file COPYING for license information (AGPL). If you
# did not receive this file, see http://www.gnu.org/licenses/agpl.txt.
# --
# Note:
#
# -->> OTRS does have a lot of config settings. For more settings
# (Notifications, Ticket::ViewAccelerator, Ticket::NumberGenerator,
# LDAP, PostMaster, Session, Preferences, ...) see
# Kernel/Config/Defaults.pm and copy your wanted lines into "this"
# config file. This file will not be changed on update!
#
# --

package Kernel::Config;

sub Load {
my $Self = shift;
# ---------------------------------------------------- #
# ---------------------------------------------------- #
# #
# Start of your own config options!!! #
# #
# ---------------------------------------------------- #
# ---------------------------------------------------- #

# ---------------------------------------------------- #
# database settings #
# ---------------------------------------------------- #
# DatabaseHost
# (The database host.)
$Self->{'DatabaseHost'} = 'localhost';
# Database
# (The database name.)
$Self->{'Database'} = 'otrs';
# DatabaseUser
# (The database user.)
$Self->{'DatabaseUser'} = 'otrs';
# DatabasePw
# (The password of database user. You also can use bin/CryptPassword.pl
# for crypted passwords.)
$Self->{'DatabasePw'} = 'xxxxxx';
# DatabaseDSN
# (The database DSN for MySQL ==> more: "man DBD::mysql")
$Self->{DatabaseDSN} = "DBI:mysql:database=$Self->{Database};host=$Self->{DatabaseHost};";

# (The database DSN for PostgreSQL ==> more: "man DBD::Pg")
# if you want to use a local socket connection
# $Self->{DatabaseDSN} = "DBI:Pg:dbname=$Self->{Database};";
# if you want to use a tcpip connection
# $Self->{DatabaseDSN} = "DBI:Pg:dbname=$Self->{Database};host=$Self->{DatabaseHost};";

# ---------------------------------------------------- #
# fs root directory
# ---------------------------------------------------- #
$Self->{Home} = '/opt/otrs';

# ---------------------------------------------------- #
# insert your own config settings "here" #
# config settings taken from Kernel/Config/Defaults.pm #
# ---------------------------------------------------- #
# $Self->{SessionUseCookie} = 0;
# $Self->{'CheckMXRecord'} = 1;

######## Meine Erweiterungen ###########################################


# --------------------------------------------------- #
# authentication settings #
# (enable what you need, auth against otrs db, #
# against LDAP directory, agains HTTP basic auth #
# or against Radius server) #
# --------------------------------------------------- #
# This is the auth. module againt the otrs db
$Self->{'AuthModule'} = 'Kernel::System::Auth::DB';

# password crypt type (md5|crypt|plain)
# $Self->{'AuthModule::DB::CryptType'} = 'md5';



# This is an example configuration for an LDAP auth. backend.
# (take care that Net::LDAP is installed!)
$Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';
$Self->{'AuthModule::LDAP::Host'} = 'hbw3s001.xxxxxx.de';
$Self->{'AuthModule::LDAP::BaseDN'} = 'dc=xxxxxx,dc=de';
# $Self->{'AuthModule::LDAP::UID'} = 'uid';
$Self->{'AuthModule::LDAP::UID'} = 'sAMAccountName';

# Password zum Anmelden am AD
$Self->{'AuthModule::LDAP::SearchUserDN'} = 'cn=otrsadm,ou=admins,dc=xxxxxx,dc=de';
# Die nachfolgende Zeile ist besonders,
# da es eigentlich wie die obere Zeile sein sollte, das klappt aber nicht.
# Daher steht es so da drin

$Self->{'AuthModule::LDAP::SearchUserDN'} = 'xxxxxx\otrsadm';
$Self->{'AuthModule::LDAP::SearchUserPw'} = 'xxxxxxxxx';


# --------------------------------------------------- #
# authentication sync settings #
# (enable agent data sync. after succsessful #
# authentication) #
# --------------------------------------------------- #
# This is an example configuration for an LDAP auth sync. backend.
# (take care that Net::LDAP is installed!)
$Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
$Self->{'AuthSyncModule::LDAP::Host'} = 'hbw3s001.xxxxxx.de';
$Self->{'AuthSyncModule::LDAP::BaseDN'} = 'dc=xxxxxx,dc=de';
# $Self->{'AuthSyncModule::LDAP::UID'} = 'uid';
$Self->{'AuthSyncModule::LDAP::UID'} = 'saAMAccountName';

# The following is valid but would only be necessary if the
# anonymous user do NOT have permission to read from the LDAP tree
$Self->{'AuthSyncModule::LDAP::SearchUserDN'} = 'xxxxx\otrsadm';
$Self->{'AuthSyncModule::LDAP::SearchUserPw'} = 'xxxxxxxxx';

# in case you want to add always one filter to each ldap query, use
# this option. e. g. AlwaysFilter => '(mail=*)' or AlwaysFilter => '(objectclass=user)'
# $Self->{'AuthSyncModule::LDAP::AlwaysFilter'} = '';

# Net::LDAP new params (if needed - for more info see perldoc Net::LDAP)
$Self->{'AuthModule::LDAP::Params'} = {
port => 389,
timeout => 120,
async => 0,
version => 3,
};



# AuthSyncModule::LDAP::UserSyncMap
# (map if agent should create/synced from LDAP to DB after successful login)
$Self->{'AuthSyncModule::LDAP::UserSyncMap'} = {
# # DB -> LDAP
UserFirstname => 'givenName',
UserLastname => 'sn',
UserEmail => 'mail',
};










########################### meine ende #####################################

# ---------------------------------------------------- #

# ---------------------------------------------------- #
# data inserted by installer #
# ---------------------------------------------------- #
# $DIBI$
$Self->{'SystemID'} = 10;
$Self->{'SecureMode'} = 1;
$Self->{'Organization'} = 'xxxxxx';
$Self->{'LogModule::LogFile'} = '/tmp/otrs.log';
$Self->{'LogModule'} = 'Kernel::System::Log::SysLog';
$Self->{'FQDN'} = 'mars.xxxxxx.de';
$Self->{'DefaultLanguage'} = 'de';
$Self->{'AdminEmail'} = 'root@localhost';
$Self->{'DefaultCharset'} = 'utf-8';

# ---------------------------------------------------- #
# ---------------------------------------------------- #
# #
# End of your own config options!!! #
# #
# ---------------------------------------------------- #
# ---------------------------------------------------- #
}

# ---------------------------------------------------- #
# needed system stuff (don't edit this) #
# ---------------------------------------------------- #
use strict;
use warnings;

use vars qw(@ISA $VERSION);
use Kernel::Config::Defaults;
push (@ISA, 'Kernel::Config::Defaults');

use vars qw(@ISA $VERSION);
$VERSION = qw($Revision: 1.21 $)[1];

# -----------------------------------------------------#

1;


Hat jemand eine Idee wo der Fehler liegen könnte ????

gruß roland

[jojo]

Jun 14 16:11:54 mars OTRS-CGI-10[2255]: [Error][Kernel::System::Auth::Sync::LDAP::Sync][Line:177]: Search failed! (dc=xxxxxx,dc=de) filter='(saAMAccountName=myloginname)' 0000202B: RefErr:

Samaccountname ist falsch geschrieben. Ein A zuviel...