Hallo!
In der Ereignisanzeige des AD ist nichts verzeichnet.
Ich habe jetzt mal aus den Support Tools von M$ die ldp.exe auf den
Server gestartet. Dort bin ich als Administrator angemeldet und habe die
Datei gestartet. Anschlie�end bekomme ich die Einstellungen aufgelistet.
ld = ldap_open("Franz.local", 389);
Established connection to Franz.local.
Retrieving base DSA information...
Result <0>: (null)
Matched DNs:
Getting 1 entries:
>> Dn:
1> currentTime: 6/11/2004 10:6:50 Westeurop�ische Normalzeit Westeurop�ische
Normalzeit;
1> subschemaSubentry:
CN=Aggregate,CN=Schema,CN=Configuration,DC=Franz,DC=local;
1> dsServiceName: CN=NTDS
Settings,CN=BI-SERVER-01,CN=Servers,CN=Standardname-des-ersten-Standorts,CN=Sites,CN=Configuration,DC=Franz,DC=local;
3> namingContexts: CN=Schema,CN=Configuration,DC=Franz,DC=local;
CN=Configuration,DC=Franz,DC=local; DC=Franz,DC=local;
1> defaultNamingContext: DC=Franz,DC=local;
1> schemaNamingContext: CN=Schema,CN=Configuration,DC=Franz,DC=local;
1> configurationNamingContext: CN=Configuration,DC=Franz,DC=local;
1> rootDomainNamingContext: DC=Franz,DC=local;
16> supportedControl: 1.2.840.113556.1.4.319; 1.2.840.113556.1.4.801;
1.2.840.113556.1.4.473; 1.2.840.113556.1.4.528; 1.2.840.113556.1.4.417;
1.2.840.113556.1.4.619; 1.2.840.113556.1.4.841; 1.2.840.113556.1.4.529;
1.2.840.113556.1.4.805; 1.2.840.113556.1.4.521; 1.2.840.113556.1.4.970;
1.2.840.113556.1.4.1338; 1.2.840.113556.1.4.474; 1.2.840.113556.1.4.1339;
1.2.840.113556.1.4.1340; 1.2.840.113556.1.4.1413;
2> supportedLDAPVersion: 3; 2;
12> supportedLDAPPolicies: MaxPoolThreads; MaxDatagramRecv; MaxReceiveBuffer;
InitRecvTimeout; MaxConnections; MaxConnIdleTime; MaxActiveQueries; MaxPageSize;
MaxQueryDuration; MaxTempTableSize; MaxResultSetSize; MaxNotificationPerConn;
1> highestCommittedUSN: 2907035;
2> supportedSASLMechanisms: GSSAPI; GSS-SPNEGO;
1> dnsHostName: bi-server-01.Franz.local;
1> ldapServiceName: Franz.local:[EMAIL PROTECTED];
1> serverName:
CN=BI-SERVER-01,CN=Servers,CN=Standardname-des-ersten-Standorts,CN=Sites,CN=Configuration,DC=Franz,DC=local;
2> supportedCapabilities: 1.2.840.113556.1.4.800; 1.2.840.113556.1.4.1791;
1> isSynchronized: TRUE;
1> isGlobalCatalogReady: TRUE;
-----------
Dann hier noch mal die Eintr�ge aus der Config.pm
$Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';
$Self->{'AuthModule::LDAP::Host'} = '172.16.2.1';
$Self->{'AuthModule::LDAP::BaseDN'} = 'dc=Franz,dc=local';
# $Self->{'AuthModule::LDAP::BaseDN'} =
'ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local';
$Self->{'AuthModule::LDAP::UID'} = 'sAMAccountName';
$Self->{'AuthModule::LDAP::SearchUserDN'} =
'cn=Administrator,ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local';
$Self->{'AuthModule::LDAP::SearchUserPw'} = 'password';
# $Self->{'AuthModule::LDAP::GroupDN'} =
'cn=Administrator,ou=Verwaltung,ou=Franz-Denutzer,dc=Franz,dc=local';
$Self->{'AuthModule::LDAP::AccessAttr'} = 'memberUid';
# $Self->{'AuthModule::LDAP::UserAttr'} = 'UID';
$Self->{'AuthModule::LDAP::UserAttr'} = 'DN';
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} = '172.16.2.1';
$Self->{'Customer::AuthModule::LDAP::BaseDN'} = 'dc=Franz,dc=local';
# $Self->{'Customer::AuthModule::LDAP::BaseDN'} =
'ou=Franz-Benutzer,dc=Franz,dc=local';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'sAMAccountName';
# $Self->{'Customer::AuthModule::LDAP::GroupDN'} =
'cn=ldap,ou=Franz-Benutzer,dc=Franz,dc=local';
# $Self->{'Customer::AuthModule::LDAP::GroupDN'} =
'cn=Administrator,ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local';
# $Self->{'Customer::AuthModule::LDAP::AccessAttr'} =
'cn=Administrator,ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local';
$Self->{'Customer::AuthModule::LDAP::SearchUserDN'} =
'cn=Administrator,ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local';
$Self->{'Customer::AuthModule::LDAP::SearchUserPw'} = "password";
$Self->{'Customer::AuthModule::LDAP::UserAttr'} = 'DN';
$Self->{'Customer::AuthModule::LDAP::Params'} = {
port => 389,
version => 3,
};
$Self->{UserSyncLDAPMap} = {
# DB -> LDAP
Firstname => 'givenName',
Lastname => 'sn',
Email => 'mail',
};
#customerUser1
#(Customer user ldap backend and settings)
$Self->{CustomerUser1} = {
Name => 'LDAP Quelle Franz',
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
# ldap host
Host => '172.16.2.1',
# ldap base dn
# BaseDN => 'dc=Franz,dc=local',
BaseDN => 'ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local',
# search scope (one|sub)
SSCOPE => 'sub',
# The following is valid but would only be necessary if the
# anonymous user does NOT have permission to read from the LDAP tree
UserDN => 'cn=Administrator,ou=Verwaltung,ou=Franz-Benutzer,dc=Franz,dc=local',
UserPW => 'password',
AlwaysFilter => '',
SourceCharset => 'utf-8',
DestCharset => 'iso-8859-1',
},
# customer uniq id
CustomerKey => 'sAMAccountName',
# customer #
CustomerID => 'mail',
CustomerUserListFields => ['sAMAccountName', 'cn', 'mail'],
CustomerUserSearchFields => ['sAMAccountName', 'cn', 'mail'],
CustomerUserSearchPrefix => '',
CustomerUserSearchSuffix => '*',
CustomerUserSearchListLimit => 250,
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['givenname', 'sn'],
Map => [
# note: Login, Email and CustomerID needed!
# var, frontend, storage, shown, required, storage-type
# [ 'UserSalutation', 'Title', 'title', 1, 0, 'var' ],
[ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var' ],
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var' ],
[ 'UserLogin', 'Login', 'sAMAccountName', 1, 1, 'var' ],
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var' ],
[ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var' ],
# [ 'UserPhone', 'Phone', 'telephonenumber', 1, 0, 'var' ],
# [ 'UserAddress', 'Address', 'postaladdress', 1, 0, 'var' ],
# [ 'UserComment', 'Comment', 'description', 1, 0, 'var' ],
# [ 'Userorganisation', 'Organisation', 'ou', 1, 0, 'var' ]
],
};
Bis dahin!
Bernhard Mainusch
__________________________________________________________________
Zeigen Sie Emotionen mit der WEB.DE Bild-SMS! Das Bild ist gratis,
Sie bezahlen nur den Versand. http://freemail.web.de/?mc=021196
_______________________________________________
OTRS Mailingliste: otrs-de - Webpage: http://otrs.org/
Archiv: http://lists.otrs.org/pipermail/otrs-de/
Listenabo verwalten: http://lists.otrs.org/cgi-bin/listinfo/otrs-de/
Support oder Consulting fuer Ihr OTRS System?
=> http://www.otrs.de/
