ich habe folgendes Problem:
Ich nutze zum Kundendaten auslesen unser firmeninternes Active Directory. Dabei werden 2 ADs ausgelesen (domain.de und subdomain.domain.de).
Dies funktionierte bisher auch. Nun wurde der AD-Server von domain.de von Windows 2000 auf 2003SP1 umgestellt und seitdem kann ich auf der Domäne keine Abfragen mehr ausführen.
Hier die Einträge in der Config.pm:
Code: Select all
# ---------------------------------------------------- #
# Kundendaten auslesen
# ---------------------------------------------------- #
$Self->{CustomerUser} = {
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
Host => 'dc.subdomain.domain.de',
BaseDN => 'dc=subdomain, dc=domain, dc=de',
SSCOPE => 'sub',
UserDN => 'cn=searchuser, cn=Users, dc=subdomain, dc=domain, dc=de',
UserPw => 'password',
SourceCharset => 'utf-8',
DestCharset => 'iso-8859-1'
},
CustomerKey => 'sAMAccountName',
CustomerID => 'mail',
CustomerUserListFields => ['cn', 'mail'],
CustomerUserSearchFields => ['sAMAccountName', 'cn', 'sn', 'givenname', 'mail'],
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['givenname', 'sn'],
Map => [
# note: Login, Email and CustomerID needed!
# var, frontend, storage, shown, required, storage-type
# [ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ],
[ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ],
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ],
[ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ],
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ],
[ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ],
[ 'UserPhone', 'Telefon', 'telephonenumber', 1, 0, 'var' ],
# [ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ],
# [ 'UserComment', 'Comment', 'description', 1, 0, 'var' ],
],
};
$Self->{CustomerUser1} = {
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
Host => 'dc.domain.de',
BaseDN => 'dc=domain, dc=de',
SSCOPE => 'sub',
UserDN => 'cn=searchuser, ou=Spezialkonten, dc=domain, dc=de',
UserPw => 'password',
SourceCharset => 'utf-8',
DestCharset => 'iso-8859-1'
},
CustomerKey => 'sAMAccountName',
CustomerID => 'mail',
CustomerUserListFields => ['cn', 'mail'],
CustomerUserSearchFields => ['sAMAccountName', 'cn', 'sn', 'givenname', 'mail'],
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['givenname', 'sn'],
Map => [
# note: Login, Email and CustomerID needed!
# var, frontend, storage, shown, required, storage-type
# [ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ],
[ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ],
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ],
[ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ],
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ],
[ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ],
[ 'UserPhone', 'Telefon', 'telephonenumber', 1, 0, 'var' ],
# [ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ],
# [ 'UserComment', 'Comment', 'description', 1, 0, 'var' ],
],
};
Code: Select all
[Tue Jan 23 11:20:09 2007][Error][Kernel::System::CustomerUser::LDAP::new][71] First bind failed! 00002028: LdapErr: DSID-0C09018A, comment: The server requires binds to turn on integrity checking if SSL\TLS are not already active on the connection, data 0, vece
Wäre super, wenn mir jmd helfen könnte, da ich im Internet und hier im Forum nichts passendes gefunden habe.