I am currently running...

osTicket Version v1.15.1
Web Server Apache/2.4.6 (CentOS) PHP/7.3.26
MySQL Version 5.5.68
PHP Version 7.3.26

I am able to authenticate Agents and successfully using the following configuration in the LDAP Authentication and Lookup plugin (version 0.6.2)

Default domain: server.domain.org
DNS Servers: DNS IP
LDAP servers: server.domain.org
Search User: domain\aduser
Password: pw for domain\aduser
Search Base: DC=domain,DC=org
LDAP Schema: Microsoft Active Directory
Staff Authentication: checked
Client Authentication: checked

Once I register an account and try logging in on the client side I get "Access Denied". However, the Agents can login without problems.

I feel there is something very simple I am missing.

    cohlsson LDAP Authentication and Lookup plugin (version 0.6.2)

    Please upgrade the plugin to the latest version (0.6.3) and re-test.

    Also go to: Admin panel -> Manage -> Plugins -> LDAP Authentication and Lookup
    Scroll all the way down to the bottom. Ensure that Client Authentication: is checked.

        How have the clients tried to log in? Just the user name or the full UPN? I have all our clients ( single domain) logging in using their full UPN. I.E Username@domain.com.

        If you have the system auto register the users or try to activate multiple accounts at a time, it will select the option for "use any authentication method". I had delete them all out and do a batch add, then go through and register them and select the option when doing so for authentication to use LDAP. Not sure if there is something there not right, but it wouldnt let them log in even though it selected " use any authentication".

          ntozier

          Thank you for your response. I already had that checked, but it appears I have it working now. Full disclosure I am still running the following...

          osTicket Version v1.15.1
          Web Server Apache/2.4.6 (CentOS) PHP/7.3.26
          MySQL Version 5.5.68
          PHP Version 7.3.26

          Here is the current plugin configuration that appears to be working for Agent and Client logins:

          Default domain: server.domain.org
          DNS Servers: DNS IP
          LDAP servers: server.domain.org
          Search User: domain\aduser
          Password: pw for domain\aduser
          Search Base: DC=server,DC=domain,DC=org
          LDAP Schema: Microsoft Active Directory
          Staff Authentication: checked
          Client Authentication: checked

          Note that I added the AD server to the search base. I'm unsure why this config works now since this is a setup I tried previously to opening this thread. Glad its working, will make a huge difference for us!

          You are welcome to close this thread.

            Daedalus01

            Our clients login using their AD user account (firstname.lastname). I haven't done any batch adding of user accounts through osticket as of yet. I was just testing with some test AD accounts I had created.

            I did fix my problem using the 0.6.2 version. Apparently adding DC=servername to the from of the search base fixed it. However, I know I tried that combo before and it didn't work. Strange.

              ntozier

              One more question, where can I obtain version 0.6.3? The current 0.6.2 I just received from your website.

                Actually, I'm probably going to have to make a new post myself here. When I was on 1.14 I could use the username or the email address. Since going to 1.15 it seems it will take username only. We're you on 1.14 previously?

                I downloaded 0.6.3 f rom osticket.com/download at some point.

                When I downloaded 1.15.1, It came with 0.6.3 of the LDAP plugin. My download is from about a week or so ago

                3 months later

                Downloaded and installed 1.15.2 successfully. It came with 0.6.2 LDAP plugin. Tried to download the plugin independently from osticket.com/download. It is also 0.6.2. I am able to install and enable the plugin, but then the LDAP settings do not get saved when I go back and check, after having entered them. Any idea how to get the 0.6.3 plugin?

                osTicket Version v1.15.2 (cb6766e) — Up to date
                Web Server Software Apache
                MySQL Version 10.3.27
                PHP Version 7.3.27-1deb10u1

                2 years later

                Hi everyone.
                I am having the same issue where clients can't login using LDAP Authentication.
                I am using osTicket (v1.17.2) and LDAP (v0.6.2) Plugin.
                I have enable authentication for both agent and client but only agents can login.

                Can someone steer me in the right direction as to what might be my problem?

                This thread hasn't had a post in 2 years.

                Please read the posting guidelines located in this thread: Please read before requesting assistance. The more information you give us the better we will be able to assist you. Thank you.

                Killing zombie thread with a head shot

                Write a Reply...