otrs SLDAP connection

nickyls · Post by **nickyls** » 11 Jun 2012, 17:54

hi Experts!

I have installed otrs3.0.11 on REDHAT Linux.i want to integrate otrs application to SLDAP database.Can you suggest me how to integrate Otrs application to SLDAP.Normally port 636 is used for connecting SLDAP.But i am unable to connect to that port..
Pls reply...Need urgent help...
Thanks ADvance

nickyls · Post by **nickyls** » 12 Jun 2012, 12:26

Here is the config code from OTRS:

$Self->{'Customer::AuthModule::LDAP::Params'} = {
'cafile' => '\opt\otrs\crts\XXXX.cer',
'port' => '636',
'sslversion' => 'V3',
'verify' => 'required',
};

# CustomerUser
# (customer user ldap backend and settings)
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} = 'somedomain.com';
$Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'dc=somedomain,dc=com';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName';
#$Self->{'Customer::AuthModule::LDAP::GroupDN'} = 'cn=abcd,ou=users,dc=somedomain,dc=com';
#$Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'UID';
$Self->{'Customer::AuthModule::LDAP::AccessAttr'} = 'member';
$Self->{'Customer::AuthModule::LDAP::SearchUserDN'} = 'cn=abcd,dc=somedomain';
$Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = 'xxxxxx';
$Self->{'Customer::AuthModule::LDAP::Params'} = {
port => 636,
timeout => 120,
async => 0,
version => 3,
};
$Self->{CustomerUser} = {
Name => 'LDAP Datasource',
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
Host => 'somedomain.com',
BaseDN => 'dc=somedomain,dc=com',
SSCOPE => 'sub',
UserDN => 'cn=abcd,dc=somedomain',
UserPW => 'xxxxxx',
Params => {
port => 636,
timeout => 120,
async => 0,
version => 3,
},
},
CustomerKey => 'uid',
CustomerID => 'mail',
CustomerUserListFields => ['sn', 'cn', 'mail'],
CustomerUserSearchFields => ['sAMAccountName', 'cn', 'sn', 'mail'],
CustomerUserSearchPrefix => '',
CustomerUserSearchSuffix => '*',
CustomerUserSearchListLimit => 250,
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['givenname', 'sn'],
CustomerUserExcludePrimaryCustomerID => 0,
AdminSetPreferences => 0,
Map => [
[ 'UserSalutation', 'Title', 'title', 1, 0, 'var', '', 0 ],
[ 'UserFirstname', 'Firstname', 'cn', 1, 1, 'var', '', 0 ],
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var', '', 0 ],
[ 'UserLogin', 'Username', 'uid', 1, 1, 'var', '', 0 ],
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var', '', 0 ],
[ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var', '', 0 ],
[ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var', '', 0 ],
[ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var', '', 0 ],
[ 'UserComment', 'Comment', 'description', 1, 0, 'var', '', 0 ],
],
};

OTRS logs the following error:
First bind failed! Unexpected EOF

Please Help..

RHEL Server OTRS 3.0.11

jojo · Post by **jojo** » 12 Jun 2012, 12:40

Please set the Hostname to: ldaps://yourhostname

nickyls · Post by **nickyls** » 12 Jun 2012, 13:04

Changed
$Self->{'Customer::AuthModule::LDAP::Host'} = 'xx.xx.xx.xxx'
to
$Self->{'Customer::AuthModule::LDAP::Host'} = 'ldaps://xx.xx.xx.xx'

Log shows Same
First bind failed! Unexpected EOF
First bind failed! 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece

jojo · Post by **jojo** » 12 Jun 2012, 13:40

this is a different error:

First bind failed! 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece

Check the logs of your AD server. Perhaps wrong username

nickyls · Post by **nickyls** » 12 Jun 2012, 14:16

Perfect!!! Thanks Jojo,

One more question,

How many LDAP can we integrate to OTRS. I mean what's the Limit?
If i would like to multiple LDAP's , the syntax would be (each line)

$Self->{'Customer::AuthModule1'},
$Self->{'Customer::AuthModule2'}
.... Right??

jojo · Post by **jojo** » 12 Jun 2012, 14:34

up to 9 with a number

nickyls · Post by **nickyls** » 12 Jun 2012, 14:35

Thanks a Lot

nickyls · Post by **nickyls** » 13 Jun 2012, 12:04

hi
i could add multilpe ldaps but i am seeing this error in otrs logs.
Customer::AuthModule::LDAPBaseDN3 in Kernel/Config.pm
Jun 13 13:47:20 HYDILOTRSAPP OTRS-CGI-10[8829]: [Error][Kernel::System::CustomerAuth::LDAP::new][Line:60]: Need Customer::AuthModule::LDAPBaseDN2 in Kernel/Config.pm
Jun 13 13:47:20 HYDILOTRSAPP OTRS-CGI-10[8829]: [Error][Kernel::System::CustomerAuth::LDAP::new][Line:60]: Need Customer::AuthModule::LDAPBaseDN3 in Kernel/Config.pm
Jun 13 13:47:22 HYDILOTRSAPP OTRS-CGI-10[8834]: [Error][Kernel::System::CustomerAuth::LDAP::new][Line:60]: Need Customer::AuthModule::LDAPBaseDN2 in Kernel/Config.pm
Jun 13 13:47:22 HYDILOTRSAPP OTRS-CGI-10[8834]: [Error]

i have defined like this in config.pm

Code: Select all

$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} = 'somedomain.com';
$Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'dc=somedomain,dc=com';

$Self->{'Customer::AuthModule2'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host2'} = 'somedomain.com';
$Self->{'Customer::AuthModule::LDAP::BaseDN2'} = 'dc=somedomain,dc=com';

$Self->{'Customer::AuthModule3'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host3'} = 'somedomain.com';
$Self->{'Customer::AuthModule::LDAP::BaseDN3'} = 'dc=somedomain,dc=com';

Post by **crythias** » 13 Jun 2012, 14:49

If you have a CustomerAuth, you'll need to have a CustomerUser referenced with the same index.

Znuny Open Source Ticketsystem

otrs SLDAP connection

otrs SLDAP connection

Re: otrs SLDAP connection

Re: otrs SLDAP connection

Re: otrs SLDAP connection

Re: otrs SLDAP connection

Re: otrs SLDAP connection

Re: otrs SLDAP connection

Re: otrs SLDAP connection

Re: otrs SLDAP connection

Re: otrs SLDAP connection