Hi Nils,
I made changes suggested by you, still getting "Login failed! Your username or
password was entered incorrectly. " error and below error in https error_log
ERROR: OTRS-CGI-10 Perl: 5.8.8 OS: linux Time: Fri Jan 21 11:48:42 2011
Message: No UserID found for 'otrsuser1'!
Traceback (4422):
Module: Kernel::System::User::UserLookup (v1.111) Line: 746
Module: Kernel::System::Auth::Auth (v1.49) Line: 216
Module: Kernel::System::Web::InterfaceAgent::Run (v1.58) Line: 201
Module:
ModPerl::ROOT::ModPerl::Registry::opt_otrs_bin_cgi_2dbin_index_2epl::handler
(unknown version) Line: 48
Module: (eval) (v1.88) Line: 204
Module: ModPerl::RegistryCooker::run (v1.88) Line: 204
Module: ModPerl::RegistryCooker::default_handler (v1.88) Line: 170
Module: ModPerl::Registry::handler (v1.99) Line: 31
This is what I had on Config.pm now,
######LDAP CONFIG ######
$Self->{AuthModule} = 'Kernel::System::Auth::LDAP';
$Self->{'AuthModule::LDAP::Host'} = '192.168.56.130';
$Self->{'AuthModule::LDAP::BaseDN'} = 'dc=sridhar,dc=com';
$Self->{'AuthModule::LDAP::UID'} = 'uid';
$Self->{'AuthModule::LDAP::GroupDN'} = 'cn=otrs,ou=groups,dc=sridhar,dc=com';
$Self->{'AuthModule::LDAP::UserAttr'} = 'CN';
$Self->{'AuthModule::LDAP::AccessAttr'} = 'member';
$Self->{'AuthModule::LDAP::Params'} = {
port => 389,
timeout => 120,
async => 0,
version => 3,
};
$Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
$Self->{'AuthSyncModule::LDAP::Host'} = 'ldap://192.168.56.130';
$Self->{'AuthSyncModule::LDAP::BaseDN'} = 'dc=sridhar, dc=com';
$Self->{'AuthSyncModule::LDAP::UID'} = 'uid';
$Self->{'AuthSyncModule::LDAP::UserSyncMap'} = {
UserFirstname => 'givenName',
UserLastname => 'sn',
UserEmail => 'mail',
};
$Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = [
'otrs',
];
######END OF LDAP CONFIG #######
Sorry, I didn't understand what you mean by Sync? Can I sync ldap to DB
manually? If so could you please point me how to do that?
Thanks,
Sridhar..
----- "Nils Leideck" <[email protected]> wrote:
> Ok, here we go ...
>
In the Auth Module (not the Sync one), you said Access Attr is uid, that is
correct, but the Config does search for the Attribut member with a value of the
CN of the user who tries to login.
>
So just change the Access Attr. to CN and memberUID to member ... this should
at least solve the issue for the authentication ...
Next one is the Sync if it doesn’t work directly ;-))
>
Cheers, Nils
>
>
>
>
>
>
>
>
>
> —
> Nils Leideck
> Senior Consultant
>
> http://webint.cryptonode.de / a Fractal project
>
On 20.01.2011, at 23:45, Sridhar Reddapani wrote:
>
> ----- "Nils Leideck" < [email protected] > wrote:
> > Ok, additional questions:
> >
1. Did you setup the Auth Sync Module?
> I had this config part in my Config.pm file, Is that what I need to setup
> Auth Sync Module?
>
> $Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
> $Self->{'AuthSyncModule::LDAP::Host'} = 'ldap://192.168.56.130';
> $Self->{'AuthSyncModule::LDAP::BaseDN'} = 'dc=sridhar, dc=com';
> $Self->{'AuthSyncModule::LDAP::UID'} = 'uid';
> $Self->{'AuthSyncModule::LDAP::UserSyncMap'} = {
> UserFirstname => 'givenName',
> UserLastname => 'sn',
> UserEmail => 'mail',
> };
> $Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = [
> 'otrs',
> ];
>
>
> 2. Did you create the user manually in the agent database already?
> No, I am expecting users will be synced from LDAP to DB. Am I correct?
>
> 3. Please post LDIF of otrs access group
>
> dn: cn=otrs,ou=groups,dc=sridhar,dc=com
> objectClass: groupOfNames
> cn: otrs
> description: otrs group
> member: uid=otrsuser,ou=people,dc=sridhar,dc=com
> member: uid=otrsuser1,ou=people,dc=sridhar,dc=com
> member: uid=otrsuser2,ou=people,dc=sridhar,dc=com
> member: uid=otrsuser3,ou=people,dc=sridhar,dc=com
> structuralObjectClass: groupOfNames
> entryUUID: 02781f06-b6fc-102f-9d31-d59e94f85bc7
> creatorsName: cn=Manager,dc=sridhar,dc=com
> createTimestamp: 20110118030846Z
> entryCSN: 20110119031235Z#000000#00#000000
> modifiersName: cn=Manager,dc=sridhar,dc=com
> modifyTimestamp: 20110119031235Z
>
>
4. Did you take care of case sensitive for config values?
> Yes.
>
> Thanks Again,
> Sridhar..
>
>---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
