My LDAP integration with customers back end went successfully. Even I'm able to login my agents using LDAP authentication. The problem I'm facing is that OTRS is not adding new agents through LDAP Sync.
I may be wrong, but what I'm assuming is that once otrs is able to authenticate the agent using ldap, it will create a user in OTRS DB automatically. I'm receiving this error when trying to login with a proper ldap user which is not there in OTRS DB.
Code: Select all
Panic, user authenticated but no user data can be found in OTRS DB!!
My Logs publish these errors
Code: Select all
Need User Email
Code: Select all
Can't create user 'otrs_test' (CN=otrs test,OU=IT Test,OU=Department,OU=OU_OU1,DC=domain,DC=com) in RDBMS
Code: Select all
No user ID found for otrs_test
Here is my agents code
Code: Select all
$Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';
$Self->{'AuthModule::LDAP::Host'} = 'host.domain.com';
$Self->{'AuthModule::LDAP::BaseDN'} = 'dc=domain,dc=com';
$Self->{'AuthModule::LDAP::UID'} = 'sAMAccountName';
$Self->{'AuthModule::LDAP::SearchUserDN'} = 'cn=Ldap User,cn=users,dc=domain,dc=com';
$Self->{'AuthModule::LDAP::SearchUserPw'} = 'somepass';
$Self->{'AuthModule::LDAP::AlwaysFilter'} = '';
$Self->{'AuthModule::LDAP::Params'} = {
port => 389,
timeout => 120,
async => 0,
version => 3,
};
$Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
$Self->{'AuthSyncModule::LDAP::Host'} = 'host.domain.com';
$Self->{'AuthSyncModule::LDAP::BaseDN'} = 'dc=domain, dc=com';
$Self->{'AuthSyncModule::LDAP::UID'} = 'sAMAccountName';
$Self->{'AuthSyncModule::LDAP::UserAttr'} = 'DN';
$Self->{'AuthSyncModule::LDAP::AccessAttr'} = 'member';
$Self->{'AuthSyncModule::LDAP::SearchUserDN'} = 'cn=Ldap User,cn=users,dc=domain,dc=com';
$Self->{'AuthSyncModule::LDAP::SearchUserPw'} = 'somepass';
$Self->{'AuthSyncModule::LDAP::UserSyncMap'} = {
UserFirstname => 'givenName',
UserLastname => 'sn',
UserEmail => 'mail',
};
$Self->{UserSyncLDAPGroups} = ['users',];
$Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = ['users',];
$Self->{DatabaseUserTable} = 'users';
$Self->{DatabaseUserTableUserID} = 'id';
$Self->{DatabaseUserTableUserPW} = 'pw';
$Self->{DatabaseUserTableUser} = 'login';
$Self->{'AuthModule::LDAP::GroupDN'} ='cn=Agents,OU=AgentsAccounts,dc=domain,dc=com';
$Self->{'AuthModule::LDAP::AccessAttr'} = 'member';
$Self->{'AuthModule::LDAP::UserAttr'} = 'DN';