I have a problem with the authentication of some customers in OTRS v. 3.1.8. I've made the LDAP configuration with this parameters
Code: Select all
# Customer Authentication: Uso LDAP
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
# Customer Authentication: Hostname/IP
$Self->{'Customer::AuthModule::LDAP::Host'} = 'ldapauth1.Dominio.it';
# Customer Authentication: BaseDN
$Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'ou=users,o=Dominio';
# Customer Authentication: UID object
# $Self->{'Customer::AuthModule::LDAP::UID'} = 'uid';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'cn';
# Customer Authentication: UserDN
$Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'cn=admin,o=Dominio';
# Customer Authentication: Password
$Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'admin';
# Customer Authentication: Filter
# in case you want to add always one filter to each ldap query, use
# this option. e. g. AlwaysFilter => '(mail=*)' or AlwaysFilter => '(objectclass=user)'
# $Self->{'AuthModule::LDAP::AlwaysFilter'} = '(ou=ced)';
$Self->{CustomerUser} = {
Name => 'LDAP Data Source',
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
Host => 'ldapauth1.Dominio.it',
BaseDN => 'ou=users,o=Dominio',
SSCOPE => 'sub',
UserDN => 'cn=admin,o=Dominio',
UserPw => 'admin',
AlwaysFilter => '(mail=*)',
SourceCharset => 'utf-8',
DestCharset => 'utf-8',
},
CustomerKey => 'uid',
#CustomerID => 'o',
CustomerID => 'mail',
# CustomerUserListFields => ['uid', 'cn', 'mail'],
CustomerUserListFields => ['cn', 'mail'],
CustomerUserSearchFields => ['uid', 'cn', 'mail'],
CustomerUserSearchPrefix => '',
CustomerUserSearchSuffix => '*',
CustomerUserSearchListLimit => 250,
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['givenname', 'sn'],
CustomerUserExcludePrimaryCustomerID => 0,
CustomerUserValidFilter => '(!(description=locked))',
AdminSetPreferences => 0,
CacheTTL => 0,
ReadOnly => 1,
Map => [
# note: Login, Email and CustomerID needed!
# var, frontend, storage, shown (1=always,2=lite), required, storage-type, http-link, readonly
# Titolo
[ 'UserTitle', 'Title', 'personalTitle', 1, 0, 'var', '', 1 ],
# Nome
[ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var', '', 1 ],
# Cognome
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var', '', 1 ],
# Accesso
[ 'UserLogin', 'Login', 'uid', 1, 1, 'var', '', 1 ],
# Email
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var', '', 1 ],
# Codice cliente
[ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var', '', 1 ],
# Telefono
[ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var', '', 1 ],
# Cellulare (NEW)
[ 'UserMobile', 'Mobile', 'mobile', 1, 0, 'var', '', 1 ],
# Address (NON UTILIZZATO)
# [ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var', '', 1 ],
# Commento (NON UTILIZZATO)
# [ 'UserComment', 'Comment', 'description', 1, 0, 'var' ],
# Direction (NEW)
[ 'UserDirection', 'Direction', 'ou', 1, 0, 'var', '', 1 ],
# Company (NEW)
[ 'UserCompany', 'Company', 'company', 1, 0, 'var', '', 1 ],
# Type (NEW)
[ 'UserType', 'Type', 'employeeType', 1, 0, 'var', '', 1 ],
# Location (NEW)
[ 'UserLocation', 'Location', 'l', 1, 0, 'var', '', 1 ],
],
};I checked the parameters in my LDAP and they seems to be the same as for other users.
Do you have any suggestion to solve this problem?
Thanks,
Stefania