Agents need to be added manually before they can be authenticated.
On Thu, Mar 31, 2011 at 10:21 AM, Neil Simpson <[email protected]> wrote:
> Hello All,
>
> i've been trying to google for an answer to this likely easy issue:
>
> i configured otrs-ldap to fetch users from AD but i get "Panic, user
> authenticated but no user data can be found in OTRS DB!! Perhaps the user is
> invalid."
>
> my config.pm file looks like this:
> $Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';
> $Self->{'AuthModule::LDAP::Host'} = 'BLANKED.com';
> $Self->{'AuthModule::LDAP::BaseDN'} = 'DC=BLANKED,DC=com';
> $Self->{'AuthModule::LDAP::UID'} = 'sAMAccountName';
>
> # Check if the user is allowed to auth in a posixGroup
> # (e. g. user needs to be in a group xyz to use otrs)
> $Self->{'AuthModule::LDAP::GroupDN'} =
> 'CN=BLANKED,CN=Users,DC=BLANKED,DC=com';
> $Self->{'AuthModule::LDAP::AccessAttr'} = 'member';
>
> # The following is valid but would only be necessary if the
> # anonymous user do NOT have permission to read from the LDAP tree
> $Self->{'AuthModule::LDAP::SearchUserDN'} = '[email protected]';
> $Self->{'AuthModule::LDAP::SearchUserPw'} = 'BLANKED;
>
> $Self->{'AuthModule::LDAP::UserLowerCase'} = 0;
>
> $Self->{UserSyncLDAPMap} = {
> # DB -> LDAP
> UserFirstname => 'givenName',
> UserLastname => 'sn',
> UserEmail => 'mail',
> };
>
> $Self->{'AuthModule::LDAP::Die'} = 1;
>
>
> in the log file i get:
> [Notice][Kernel::System::Auth::LDAP::Auth] User: BLANKED
> (CN=BLANKED,CN=Users,DC=360t,DC=com) authentication ok (REMOTE_ADDR:
> 192.168.0.blanked).
> Mar 31 13:12:22 otrs-test OTRS-CGI-10[4855]:
> [Error][Kernel::System::User::UserLookup][Line:746]: No UserID found for
> 'BLANKED'!
> Mar 31 13:12:22 otrs-test OTRS-CGI-10[4855]:
> [Error][Kernel::System::User::UserLookup][Line:746]: No UserID found for
> 'BLANKED'!
> Mar 31 13:12:22 otrs-test OTRS-CGI-10[4855]:
> [Notice][Kernel::System::User::GetUserData] Panic! No UserData for user:
> 'BLANKED'!!!
>
> so it's authenticating but due to the fact the user doesn't exist in the
> otrs db it wont allow me to login. I thought this sync occured from the
> "usersyncldapmap" command above.
>
> any help much appreciated as i dont want to use the workaround which is to
> create a user in otrs before they login for first time. that's just stupid
> and annoying.
>
> thanks
>
> Neil
>
>
>
> ---------------------------------------------------------------------
> OTRS mailing list: otrs - Webpage: http://otrs.org/
> Archive: http://lists.otrs.org/pipermail/otrs
> To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
>
---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
