problems with group assignment

Moderator: crythias

Post Reply
jepics44
OTRS newbie
Posts: 13
Joined: 23 Jan 2018, 18:07
OTRS Version?: OTRS 6
Real Name: Lemi
Company: nada

problems with group assignment

Post by jepics44 » 13 Aug 2019, 20:17

Hi.
I have a problem with the assignment of agents to OTRS groups.
I am trying to join a specific agent to all groups and although OTRS correctly applies the configuration, at the moment this agent authenticates the permissions disappear.

Image

root
Moderator
Posts: 1888
Joined: 18 Dec 2007, 12:23
OTRS Version?: 4/5/6
Real Name: Roy Kaldung
Company: Znuny Inc.
Contact:

Re: problems with group assignment

Post by root » 13 Aug 2019, 21:56

Hi,

Did you checked the Config.pm for AuthSync settings?

- Roy
OTRS 5/6 CentOS / RHEL / Debian / SLES / MySQL / PostgreSQL / Oracle / OpenLDAP / Active Directory / SSO

Do you need professional services for the ((OTRS)) Community Edition? Check out https://www.znuny.com/

jepics44
OTRS newbie
Posts: 13
Joined: 23 Jan 2018, 18:07
OTRS Version?: OTRS 6
Real Name: Lemi
Company: nada

Re: problems with group assignment

Post by jepics44 » 14 Aug 2019, 15:19

root wrote:
13 Aug 2019, 21:56
Hi,

Did you checked the Config.pm for AuthSync settings?

- Roy
Thanks for answering, this is the configuration that I currently have, I think it's fine, isn't it?

Code: Select all

# Now sync data with OTRS DB
    $Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
    $Self->{'AuthSyncModule::LDAP::Host'} = 'plccdc-03.pcc.local';
    $Self->{'AuthSyncModule::LDAP::BaseDN'} = 'dc=pcc,dc=local';
    $Self->{'AuthSyncModule::LDAP::UID'} = 'sAMAccountName';
    $Self->{'AuthSyncModule::LDAP::SearchUserDN'} = 'CN=soporte,OU=Soporte,OU=plussa,DC=PCC,DC=local';
    $Self->{'AuthSyncModule::LDAP::SearchUserPw'} = 'Admin Domain Password';
    $Self->{'AuthSyncModule::LDAP::AccessAttr'} = 'member';
    $Self->{'AuthSyncModule::LDAP::UserAttr'} = 'DN';
    $Self->{'AuthSyncModule::LDAP::UserSyncMap'} = {
        # DB -> LDAP
        UserFirstname => 'givenName',
        UserLastname  => 'sn',
        UserEmail     => 'mail',
    };



    # AuthSyncModule::LDAP::UserSyncInitialGroups
    # (sync following group with rw permission after initial create of first agent
    # login)
    $Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = [
        'users',
	
    ];
        # AuthSyncModule::LDAP::UserSyncGroupsDefinition
    # (If "LDAP" was selected for AuthModule and you want to sync LDAP
    # groups to otrs groups, define the following.)
    $Self->{'AuthSyncModule::LDAP::UserSyncGroupsDefinition'} = {
        # ldap group
        'OU=soporte,OU=plussa,DC=PCC,DC=local' => {
            # otrs group
            'admin' => {
                # permission
                rw => 1,
                ro => 1,
            },
        },
        'OU=plussa,DC=PCC,DC=local' => {
            'users' => {
                move_into => 1,
            },
        }
    };

root
Moderator
Posts: 1888
Joined: 18 Dec 2007, 12:23
OTRS Version?: 4/5/6
Real Name: Roy Kaldung
Company: Znuny Inc.
Contact:

Re: problems with group assignment

Post by root » 20 Aug 2019, 12:15

Hi,

Increase the LogLevel to debug. Usually the AuthSync backend writes everything into the log. For a quick test if it related to AuthSync you can also comment out the AuthSync settings.

- Roy
OTRS 5/6 CentOS / RHEL / Debian / SLES / MySQL / PostgreSQL / Oracle / OpenLDAP / Active Directory / SSO

Do you need professional services for the ((OTRS)) Community Edition? Check out https://www.znuny.com/

Post Reply