Multi-Domain (LDAP) Authentication

Moderator: crythias

Post Reply
RichH
Znuny newbie
Posts: 61
Joined: 13 Mar 2015, 18:34
Znuny Version: 6.4
Real Name: Rich Hagan
Company: Victorinox Swiss Army, Inc.

Multi-Domain (LDAP) Authentication

Post by RichH »

OTRS Version: 3.3.12
OS: CentOS 6.5
Database: mySQL 6.5
Perl Version: Perl 5.10.1

Hi,

We're in the process of migrating our A/D domain into our HQ's domain. User migrations will be done in phases.

We currently have OTRS set to Authenticate to our local domain. As users are migrated, we'll need to Authenticate to both domains.

Is there anyway to configure OTRS to Authenticate via LDAP to two A/D domains?

(Note: We've tried combining domains using LDS, however the SIDHistory attribute of migrated accounts misdirects to the disabled/migrated accounts and logins fail.)

Thanks for your help!
root
Administrator
Posts: 3934
Joined: 18 Dec 2007, 12:23
Znuny Version: Znuny and Znuny LTS
Real Name: Roy Kaldung
Company: Znuny
Contact:

Re: Multi-Domain (LDAP) Authentication

Post by root »

Hi Rich,

That's no problem. The only challenge is to determine which Active Directory attribute you use as the identifier.
E.g. the sAMAccountName could be a problem in a multi domain environment. Do you use authentication for agents and customer user? How does your configuration looks like?

- Roy
Znuny and Znuny LTS running on CentOS / RHEL / Debian / SLES / MySQL / PostgreSQL / Oracle / OpenLDAP / Active Directory / SSO

Use a test system - always.

Do you need professional services? Check out https://www.znuny.com/

Do you want to contribute or want to know where it goes ?
Post Reply