Configure Required¶
Everything is pretty well documented in the /ldap/config.php file however here is a more inclusive documentation
For all the examples below we will be using mysite.com as the AD prefix and DC=mysite,DC=com as the base DN
$ldap_domain_info = array('@mydomain.local' => 'DC=mydomain,DC=local');
This is the LDAP domain info.
- You can have more than one domain if needed.
- It goes AD Prefix => Base DN
Example:¶
$ldap_domain_info = array('@mysite.com' => 'DC=mysite,DC=com');
Lets say you have a second domain called mysite2.net that you want to authenticate to as well:$ldap_domain_info = array('@mysite.com' => 'DC=mysite,DC=com', '@mysite2.net' => 'DC=mysite2,DC=net');
$ldap_domain_controllers = array('dc01.mydomain.local');
Domain controller(s).
- You can use DNS names or IPs
- You can also have more than one
Example:¶
$ldap_domain_controllers = array('dc01.mysite.com');
More than one:$ldap_domain_controllers = array('dc01.mysite.com', '192.168.1.2', 'dc04.mysite.com');
$staff_groups = array('Group' => 'Staff');
This is only required if you are going to use this for staff logins
If you are not sure what this part is for please see the Setup page and Staff setup.
Change for AD staff groups a user must be in to login
- AD_Group => Kayako_Staff_Team
- Case sensitive
- Can have more than one
- The list goes in order of how its entered and stops when a user is found. So if the user is in more than one AD group that have a Staff Team he will only be apart of the team of the first AD group they are found in
- So in the example below lets say you have a user in the Tech Support and Finance AD Group. They would only be a Support team because that one is before Sales on the list.
Example:¶
Let's say you have an AD group call Tech Support and you have a Kayako Staff Team called Support$staff_groups = array('Tech Support' => 'Support');
More than one:$staff_groups = array('Tech Support' => 'Support', 'IS' => 'Support', 'Finance' => 'Sales', 'Customer Service' => 'Sales');