problems with group assignment

Moderator: crythias

Post Reply
jepics44
Znuny newbie
Posts: 13
Joined: 23 Jan 2018, 18:07
Znuny Version: OTRS 6
Real Name: Lemi
Company: nada

problems with group assignment

Post by jepics44 »

Hi.
I have a problem with the assignment of agents to OTRS groups.
I am trying to join a specific agent to all groups and although OTRS correctly applies the configuration, at the moment this agent authenticates the permissions disappear.

Image
Top
root
Administrator
Posts: 3955
Joined: 18 Dec 2007, 12:23
Znuny Version: Znuny and Znuny LTS
Real Name: Roy Kaldung
Company: Znuny
Contact:
Contact root

Re: problems with group assignment

Post by root »

Hi,

Did you checked the Config.pm for AuthSync settings?

- Roy
Znuny and Znuny LTS running on CentOS / RHEL / Debian / SLES / MySQL / PostgreSQL / Oracle / OpenLDAP / Active Directory / SSO

Use a test system - always.

Do you need professional services? Check out https://www.znuny.com/

Do you want to contribute or want to know where it goes ?
Top
jepics44
Znuny newbie
Posts: 13
Joined: 23 Jan 2018, 18:07
Znuny Version: OTRS 6
Real Name: Lemi
Company: nada

Re: problems with group assignment

Post by jepics44 »

root wrote: 13 Aug 2019, 21:56 Hi,

Did you checked the Config.pm for AuthSync settings?

- Roy
Thanks for answering, this is the configuration that I currently have, I think it's fine, isn't it?

Code: Select all

# Now sync data with OTRS DB
    $Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
    $Self->{'AuthSyncModule::LDAP::Host'} = 'plccdc-03.pcc.local';
    $Self->{'AuthSyncModule::LDAP::BaseDN'} = 'dc=pcc,dc=local';
    $Self->{'AuthSyncModule::LDAP::UID'} = 'sAMAccountName';
    $Self->{'AuthSyncModule::LDAP::SearchUserDN'} = 'CN=soporte,OU=Soporte,OU=plussa,DC=PCC,DC=local';
    $Self->{'AuthSyncModule::LDAP::SearchUserPw'} = 'Admin Domain Password';
    $Self->{'AuthSyncModule::LDAP::AccessAttr'} = 'member';
    $Self->{'AuthSyncModule::LDAP::UserAttr'} = 'DN';
    $Self->{'AuthSyncModule::LDAP::UserSyncMap'} = {
        # DB -> LDAP
        UserFirstname => 'givenName',
        UserLastname  => 'sn',
        UserEmail     => 'mail',
    };



    # AuthSyncModule::LDAP::UserSyncInitialGroups
    # (sync following group with rw permission after initial create of first agent
    # login)
    $Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = [
        'users',
	
    ];
        # AuthSyncModule::LDAP::UserSyncGroupsDefinition
    # (If "LDAP" was selected for AuthModule and you want to sync LDAP
    # groups to otrs groups, define the following.)
    $Self->{'AuthSyncModule::LDAP::UserSyncGroupsDefinition'} = {
        # ldap group
        'OU=soporte,OU=plussa,DC=PCC,DC=local' => {
            # otrs group
            'admin' => {
                # permission
                rw => 1,
                ro => 1,
            },
        },
        'OU=plussa,DC=PCC,DC=local' => {
            'users' => {
                move_into => 1,
            },
        }
    };
Top
root
Administrator
Posts: 3955
Joined: 18 Dec 2007, 12:23
Znuny Version: Znuny and Znuny LTS
Real Name: Roy Kaldung
Company: Znuny
Contact:
Contact root

Re: problems with group assignment

Post by root »

Hi,

Increase the LogLevel to debug. Usually the AuthSync backend writes everything into the log. For a quick test if it related to AuthSync you can also comment out the AuthSync settings.

- Roy
Znuny and Znuny LTS running on CentOS / RHEL / Debian / SLES / MySQL / PostgreSQL / Oracle / OpenLDAP / Active Directory / SSO

Use a test system - always.

Do you need professional services? Check out https://www.znuny.com/

Do you want to contribute or want to know where it goes ?
Top
Post Reply

Return to “Help”