problems with group assignment

Moderator: crythias

Post Reply
jepics44
OTRS newbie
Posts: 12
Joined: 23 Jan 2018, 18:07
OTRS Version?: OTRS 6
Real Name: Lemi
Company: nada

problems with group assignment

Post by jepics44 » 13 Aug 2019, 20:17

Hi.
I have a problem with the assignment of agents to OTRS groups.
I am trying to join a specific agent to all groups and although OTRS correctly applies the configuration, at the moment this agent authenticates the permissions disappear.

Image

root
Moderator
Posts: 1669
Joined: 18 Dec 2007, 12:23
OTRS Version?: 4/5/6
Real Name: Roy Kaldung
Company: Znuny Inc.
Contact:

Re: problems with group assignment

Post by root » 13 Aug 2019, 21:56

Hi,

Did you checked the Config.pm for AuthSync settings?

- Roy
OTRS 4/5/6 CentOS / RHEL / Debian / SLES / MySQL / PostgreSQL / Oracle / OpenLDAP / Active Directory / SSO

You need professional services? Check out https://www.znuny.com/

jepics44
OTRS newbie
Posts: 12
Joined: 23 Jan 2018, 18:07
OTRS Version?: OTRS 6
Real Name: Lemi
Company: nada

Re: problems with group assignment

Post by jepics44 » 14 Aug 2019, 15:19

root wrote:
13 Aug 2019, 21:56
Hi,

Did you checked the Config.pm for AuthSync settings?

- Roy
Thanks for answering, this is the configuration that I currently have, I think it's fine, isn't it?
# Now sync data with OTRS DB
$Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
$Self->{'AuthSyncModule::LDAP::Host'} = 'plccdc-03.pcc.local';
$Self->{'AuthSyncModule::LDAP::BaseDN'} = 'dc=pcc,dc=local';
$Self->{'AuthSyncModule::LDAP::UID'} = 'sAMAccountName';
$Self->{'AuthSyncModule::LDAP::SearchUserDN'} = 'CN=soporte,OU=Soporte,OU=plussa,DC=PCC,DC=local';
$Self->{'AuthSyncModule::LDAP::SearchUserPw'} = 'Admin Domain Password';
$Self->{'AuthSyncModule::LDAP::AccessAttr'} = 'member';
$Self->{'AuthSyncModule::LDAP::UserAttr'} = 'DN';
$Self->{'AuthSyncModule::LDAP::UserSyncMap'} = {
# DB -> LDAP
UserFirstname => 'givenName',
UserLastname => 'sn',
UserEmail => 'mail',
};



# AuthSyncModule::LDAP::UserSyncInitialGroups
# (sync following group with rw permission after initial create of first agent
# login)
$Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = [
'users',

];
# AuthSyncModule::LDAP::UserSyncGroupsDefinition
# (If "LDAP" was selected for AuthModule and you want to sync LDAP
# groups to otrs groups, define the following.)
$Self->{'AuthSyncModule::LDAP::UserSyncGroupsDefinition'} = {
# ldap group
'OU=soporte,OU=plussa,DC=PCC,DC=local' => {
# otrs group
'admin' => {
# permission
rw => 1,
ro => 1,
},
},
'OU=plussa,DC=PCC,DC=local' => {
'users' => {
move_into => 1,
},
}
};

Post Reply