OTRS Customer LDAP and groups

[montoxic]

Hi

I have seen a thread about this, but i can´t find it, so i try to ask this assum forum. Either it dont work, or i am missing something?

I have an otrs installation with LDAP login for customers.

I have a ldap group in one of my directorys called = AccessCustomerOTRS, where i have some groups that has some members. for example:

AccessCustomerOTRS:
* Sales
* Economy
* Administration
* Consults

But when OTRS cant find the members in these groups, however if put the user directly in "AccessCustomerOTRS".

This is my config:

Code: Select all

   $Self->{'Customer::AuthModule2'} = 'Kernel::System::CustomerAuth::LDAP';
    $Self->{'Customer::AuthModule::LDAP::Host2'} = $nx_Host;
    $Self->{'Customer::AuthModule::LDAP::BaseDN2'} = $nx_BaseDN;
    $Self->{'Customer::AuthModule::LDAP::UID2'} = 'sAMAccountName';
    $Self->{'Customer::AuthModule::LDAP::GroupDN2'} = 'CN=AccessCustomerOTRS,OU=xxxxxxx,DC=xxxxx,DC=com';
    $Self->{'Customer::AuthModule::LDAP::AccessAttr2'} = 'member';
    $Self->{'Customer::AuthModule::LDAP::UserAttr2'} = 'DN';
    # Searchuser 
    $Self->{'Customer::AuthModule::LDAP::SearchUserDN2'} = $nx_SearchUserDN;
    $Self->{'Customer::AuthModule::LDAP::SearchUserPw2'} = $nx_SearchUserPW;
    $Self->{'Customer::AuthModule::LDAP::AlwaysFilter2'} = '(&(mail=*)(objectclass=user)(objectCategory=person))';
    $Self->{'Customer::AuthModule::LDAP::Params2'} = {
        port => 389,
        timeout => 120,
        async => 0,
        version => 3,
	};

[crythias]

It's true that otrs base ldap doesn't handle groups of groups, but there's a plugin ... somewhere that does.

[montoxic]

Intresting,

If someone know about this, please let me now the name. Or maybe it is a OTRS - plugin. Well i will check.

Thanks cythias