Code: Select all
# ---------------------------------------------------- #
# database settings #
# ---------------------------------------------------- #
# DatabaseHost (The database host.)
$Self->{'DatabaseHost'} = 'localhost';
# Database (The database name.)
$Self->{'Database'} = 'otrs';
# DatabaseUser (The database user.)
$Self->{'DatabaseUser'} = 'otrs';
# DatabasePw (The password of database user. You also can use bin/otrs.CryptPassword.pl
# for crypted passwords.)
$Self->{'DatabasePw'} = '***';
# DatabaseDSN (The database DSN for MySQL ==> more: "man DBD::mysql")
$Self->{DatabaseDSN} = "DBI:mysql:database=$Self->{Database};host=$Self->{DatabaseHost};";
# (The database DSN for PostgreSQL ==> more: "man DBD::Pg")
# if you want to use a local socket connection
# $Self->{DatabaseDSN} = "DBI:Pg:dbname=$Self->{Database};";
# if you want to use a tcpip connection
# $Self->{DatabaseDSN} = "DBI:Pg:dbname=$Self->{Database};host=$Self->{DatabaseHost};";
# if you have PostgresSQL 8.1 or earlier, activate the legacy driver with this line:
# $Self->{DatabasePostgresqlBefore82} = 1;
# ---------------------------------------------------- #
# fs root directory #
# ---------------------------------------------------- #
$Self->{Home} = '/opt/otrs';
# ---------------------------------------------------- #
# Misk settings #
# ---------------------------------------------------- #
# $Self->{SessionUseCookie} = 0;
# $Self->{CheckMXRecord} = 0;
# ----------------------------------------------------#
# log settings #
# ----------------------------------------------------#
# LogModule (log backend module)
$Self->{LogModule} = 'Kernel::System::Log::SysLog';
$Self->{LogModule} = 'Kernel::System::Log::File';
# param for LogModule Kernel::System::Log::File (required!)
$Self->{'LogModule::LogFile'} = '/tmp/otrs_Config.log';
# param if the date (yyyy-mm) should be added as suffix to logfile [0|1]
$Self->{'LogModule::LogFile::Date'} = 1;
# ----------------------------------------------------#
# authentication settings #
# ----------------------------------------------------#
# This is an example configuration for using an MS AD backend
$Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';
$Self->{'AuthModule::LDAP::Host'} = '10.11.2.6';
$Self->{'AuthModule::LDAP::BaseDN'} = 'ou=chicago,ou=payflex user accounts,dc=payflex,dc=com';
$Self->{'AuthModule::LDAP::UID'} = 'otrs_ldap';
# Check if the user is allowed to auth in a posixGroup
# (e. g. user needs to be in a group OTRS_Agents to use otrs)
$Self->{'AuthModule::LDAP::GroupDN'} = 'CN=otrs_test,OU=Temp_Test,OU=Chicago,OU=PayFlex User Accounts,DC=payflex,DC=com';
$Self->{'AuthModule::LDAP::AccessAttr'} = 'member';
$Self->{'AuthModule::LDAP::UserAttr'} = 'DN';
# Bind credentials to log into AD
$Self->{'AuthModule::LDAP::SearchUserDN'} = 'CN=otrs ldap,OU=system accounts,DC=payflex,DC=com';
$Self->{'AuthModule::LDAP::SearchUserPw'} = '**';
# in case you want to add always one filter to each ldap query, use
# this option. e. g. AlwaysFilter => '(mail=*)' or AlwaysFilter => '(objectclass=user)'
$Self->{'AuthModule::LDAP::AlwaysFilter'} = '';
# in case you want to add a suffix to each login name, then
# you can use this option. e. g. user just want to use user but
# in your ldap directory exists user@domain.
$Self->{'AuthModule::LDAP::UserSuffix'} = '@payflex.com';
# Net::LDAP new params (if needed - for more info see perldoc Net::LDAP)
$Self->{'AuthModule::LDAP::Params'} = {
port => 389,
timeout => 120,
async => 0,
version => 3,
};
# Now sync data with OTRS DB
$Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
$Self->{'AuthSyncModule::LDAP::Host'} = '10.11.2.6';
$Self->{'AuthSyncModule::LDAP::BaseDN'} = 'dc=payflex, dc=com';
$Self->{'AuthSyncModule::LDAP::UID'} = 'otrs_ldap';
$Self->{'AuthSyncModule::LDAP::SearchUserDN'} = 'cn=otrs_test, ou=temp_test, ou=chicago, ou=paflex user accounts dc=payflex, dc=
com';
$Self->{'AuthSyncModule::LDAP::SearchUserPw'} = '***';
$Self->{'AuthSyncModule::LDAP::UserSyncMap'} = {
# DB -> LDAP
UserFirstname => 'givenName',
UserLastname => 'sn',
UserEmail => 'mail',
};
# AuthSyncModule::LDAP::UserSyncInitialGroups
# (sync following group with rw permission after initial create of first agent
# login)
$Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = [
'users',
];
Code: Select all
[Wed Mar 28 14:43:52 2012][Notice][Kernel::System::Auth::LDAP::Auth] User: smurray@payflex.com authentication failed, no LDAP entry
found!BaseDN='ou=chicago,ou=payflex user accounts,dc=payflex,dc=com', Filter='(otrs_ldap=smurray@payflex.com)', (REMOTE_ADDR: 10.11.
7.250).
[Wed Mar 28 14:43:52 2012][Error][Kernel::System::User::UserLookup][746] No UserID found for 'smurray'!