Hi Dan,
Maybe my (running) configuration (specific ldap filtes stripped out) can
help out, our otrs authenticates against an openldap directory:
### CUSTOMERs INTERFACE
#$Self->{'Customer::AuthModule'} =
'Kernel::System::CustomerAuth::HTTPBasicAuth';
# (take care that Net::LDAP is installed!)
$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::LDAP';
$Self->{'Customer::AuthModule::LDAP::Host'} =
'myldapserver.mydomain.mycountrycode';
$Self->{'Customer::AuthModule::LDAP::BaseDN'} =
'dc=mydomain,dc=mycountrycode';
$Self->{'Customer::AuthModule::LDAP::UID'} = 'uid';
### AGENTs INTERFACE
$Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';
$Self->{'AuthModule::LDAP::Host'} = 'myldapserver.mydomain.mycountrycode';
$Self->{'AuthModule::LDAP::BaseDN'} = 'dc=mydomain,dc=mycountrycode';
$Self->{'AuthModule::LDAP::UID'} = 'uid';
### CUSTOMER USER BACKEND
# CustomerUser
# (customer user ldap backend and settings)
$Self->{CustomerUser} = {
Name => 'LDAP DataSource',
Module => 'Kernel::System::CustomerUser::LDAP',
Params => {
# ldap host
Host => 'myldapserver.mydomain.mycountrycode',
# ldap base dn
BaseDN => 'dc=mydomain.mycountrycode',
# search scope (one|sub)
SSCOPE => 'sub',
UserDN => '',
UserPw => '',
# Net::LDAP new params (if needed - for more info see perldoc Net::LDAP)
Params => {
port => 389,
timeout => 120,
async => 0,
version => 3,
},
},
# customer uniq id
CustomerKey => 'uid',
# customer #
CustomerID => 'mail',
CustomerUserListFields => ['uid', 'cn', 'mail'],
CustomerUserSearchFields => ['uid', 'sn', 'cn', 'mail'],
CustomerUserSearchPrefix => '',
CustomerUserSearchSuffix => '*',
CustomerUserSearchListLimit => 250,
CustomerUserPostMasterSearchFields => ['mail'],
CustomerUserNameFields => ['givenname', 'sn'],
# show now own tickets in customer panel, CompanyTickets
CustomerUserExcludePrimaryCustomerID => 1,
# admin can't change customer preferences
AdminSetPreferences => 0,
Map => [
# note: Login, Email and CustomerID needed!
# var, frontend, storage, shown (1=always,2=lite), required,
storage-type, http-link, readonly
[ 'UserFirstname', 'Firstname', 'givenname', 1, 1, 'var', '', 0 ],
[ 'UserLastname', 'Lastname', 'sn', 1, 1, 'var', '', 0 ],
[ 'UserLogin', 'Login', 'uid', 1, 1, 'var', '', 0 ],
[ 'UserEmail', 'Email', 'mail', 1, 1, 'var', '', 0 ],
[ 'UserCustomerID', 'CustomerID', 'mail', 0, 1, 'var', '', 0 ],
[ 'UserCustomerIDs', 'CustomerIDs', 'gidNumber', 1, 0, 'var', '', 0 ],
],
};
</snip>
hth
FranzF
Dan OConnor wrote:
> I am trying to setup an LDAP connect, but I just can’t seem to get it
> to connect, if someone could take a look at my config and let me know
> what I am missing, that would be great…
>
> / # This is an example configuration for an LDAP auth. backend./
>
> / # (take care that Net::LDAP is installed!)/
>
> / $Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';/
>
> / $Self->{'AuthModule::LDAP::Host'} = '192.168.1.23';/
>
> / $Self->{'AuthModule::LDAP::BaseDN'} = 'OU=GW
> Export,DC=corp,DC=stamant,DC=mb,DC=ca';/
>
> / $Self->{'AuthModule::LDAP::UID'} = 'uid';/
>
>
_______________________________________________
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
Support oder Consulting für Ihr OTRS System?
=> http://www.otrs.de/
