Single Sign-On for Customer through two Active Directories

Moderator: crythias

Post Reply
PhilippS
Znuny newbie
Posts: 4
Joined: 08 Nov 2016, 11:31
Znuny Version: 3.3.13

Single Sign-On for Customer through two Active Directories

Post by PhilippS »

Hello everybody,

I am using OTRS 3.3.13 on a Windows Server with MS SQL and IIS.
I am also using LDAP Authentication for the customers without the internal database. Single Sign On is configured in Config.pm and Sysconfig and it works all the time. No i need to add a new domain for authentication and SSO of the customer.
I added a new LDAP Backend for the new domain and the authentication is working. But the SSO at the customer page is only working for the old domain. Is SSO only works for the domain in the Sysconfig or how can I enable SSO for both domains?

If I look in the log there is one confusing thing. The SSO uses HTTPBasicAuth and the old domains send the UPN as Username, but the new one send domain\username. The old one has no more info message but the new one got the error "No such user" in Kernel::System::CustomerUser::SetPreferences][596] . Because of this the authentication succeeded but the login page says there is no customer data in the customer backend.

Thank you very much and best regards.
Post Reply