I'm having a problem to get my OTRS work with my AD (Windows 2008)
The agent part is OK, everything works fine, but the customer part i cant get to work, on the log i got "authentication ok" but "No such user"
My Config.pm
Code: Select all
#Variaveis do AD
my $BaseDN = 'dc=rad,dc=local';
my $GroupDN = 'CN=TI,CN=Users,DC=RAD,DC=LOCAL';
my $CGroupDN = 'CN=Openfire,CN=Users,DC=RAD,DC=LOCAL';
my $Host = 'srvdcex01.rad.local';
my $SearchUserDN = 'cn=rad.adm,cn=users,dc=rad,dc=local';
my $SearchUserPw = 'mypassword';
#Auth com Win2008
$Self->{AuthModule} = 'Kernel::System::Auth::LDAP';
$Self->{'AuthModule::LDAP::Host'} = $Host;
$Self->{'AuthModule::LDAP::BaseDN'} = $BaseDN;
$Self->{'AuthModule::LDAP::UID'} = 'sAMAccountName';
$Self->{'AuthModule::LDAP::GroupDN'} = $GroupDN;
$Self->{'AuthModule::LDAP::AccessAttr'} = 'member';
#$Self->{'AuthModule::LDAP::UserAttr'} = 'UID';
$Self->{'AuthModule::LDAP::UserAttr'} = 'DN';
$Self->{'AuthModule::LDAP::SearchUserDN'} = $SearchUserDN;
$Self->{'AuthModule::LDAP::SearchUserPw'} = $SearchUserPw;
$Self->{'AuthModule::LDAP::Params'} = {
port => 389,
timeout => 120,
async => 0,
version => 3,
};
$Self->{'AuthModule::LDAP::Die'} = 1;
#Sync do Auth com o DB do Software
$Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
$Self->{'AuthSyncModule::LDAP::Host'} = $Host;
$Self->{'AuthSyncModule::LDAP::BaseDN'} = $BaseDN;
$Self->{'AuthSyncModule::LDAP::UID'} = 'sAMAccountName';
$Self->{'AuthSyncModule::LDAP::SearchUserDN'} = $SearchUserDN;
$Self->{'AuthSyncModule::LDAP::SearchUserPw'} = $SearchUserPw;
$Self->{'AuthSyncModule::LDAP::UserSyncMap'} = {
# DB -> LDAP
UserFirstname => 'givenName',
UserLastname => 'sn',
UserEmail => 'mail',
};
$Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = [
'users',
];
#Auth do Cliente
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} = $Host;
$Self->{'Customer::AuthModule::LDAP::BaseDN'} = $BaseDN;
$Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName';
$Self->{'Customer::AuthModule::LDAP::GroupDN'} = $CGroupDN;
$Self->{'Customer::AuthModule::LDAP::AccessAttr'} = 'member';
$Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'DN';
$Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = $SearchUserDN;
$Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = $SearchUserPw;
$Self->{'Customer::AuthModule::LDAP::Params'} = {
port => 389,
timeout => 120,
async => 0,
version => 3,
};
# Enable LDAP lookups for Customer account information.
$Self->{CustomerUser} = {
Name => 'LDAP Backend',
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
Host => $Host,
BaseDN => $BaseDN,
SSCOPE => 'sub',
UserDN => $SearchUserDN,
UserPw => $SearchUserPW,
},
CustomerKey => 'sAMAccountName',
CustomerID => 'sAMAccountName',
CustomerUserListFields => ['sAMAccountName', 'cn', 'mail'],
CustomerUserSearchFields => ['sAMAccountName', 'cn', 'mail'],
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['givenname', 'sn'],
Map => [
[ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ],
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ],
[ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ],
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ],
[ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ],
],
};
Code: Select all
[Fri Mar 22 11:43:53 2013][Notice][Kernel::System::CustomerAuth::LDAP::Auth] CustomerUser: thiago.melo (CN=Thiago Melo,CN=Users,DC=RAD,DC=LOCAL) authentication ok (REMOTE_ADDR: 192.168.10.90).
[Fri Mar 22 11:43:53 2013][Error][Kernel::System::CustomerUser::LDAP::CustomerUserDataGet][761] 000004DC: LdapErr: DSID-0C0906DD, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v1772
[Fri Mar 22 11:43:53 2013][Error][Kernel::System::CustomerUser::SetPreferences][547] No such user 'thiago.melo'!
[Fri Mar 22 11:43:53 2013][Error][Kernel::System::CustomerUser::LDAP::CustomerUserDataGet][761] 000004DC: LdapErr: DSID-0C0906DD, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v1772
[Fri Mar 22 11:43:53 2013][Error][Kernel::System::CustomerUser::LDAP::CustomerUserDataGet][761] 000004DC: LdapErr: DSID-0C0906DD, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v1772
[Fri Mar 22 11:44:02 2013][Notice][Kernel::System::CustomerAuth::LDAP::Auth] CustomerUser: fernanda.duarte (CN=Fernanda Duarte,OU=Atendimento,OU=EX,OU=Radiologia,DC=RAD,DC=LOCAL) authentication ok (REMOTE_ADDR: 192.168.10.90).
[Fri Mar 22 11:44:02 2013][Error][Kernel::System::CustomerUser::LDAP::CustomerUserDataGet][761] 000004DC: LdapErr: DSID-0C0906DD, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v1772
[Fri Mar 22 11:44:02 2013][Error][Kernel::System::CustomerUser::SetPreferences][547] No such user 'fernanda.duarte'!
[Fri Mar 22 11:44:02 2013][Error][Kernel::System::CustomerUser::LDAP::CustomerUserDataGet][761] 000004DC: LdapErr: DSID-0C0906DD, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v1772
[Fri Mar 22 11:44:02 2013][Error][Kernel::System::CustomerUser::LDAP::CustomerUserDataGet][761] 000004DC: LdapErr: DSID-0C0906DD, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v1772