Configure Required¶

Everything is pretty well documented in the /ldap/config.php file however here is a more inclusive documentation

For all the examples below we will be using mysite.com as the AD prefix and DC=mysite,DC=com as the base DN

$ldap_domain_info = array('@mydomain.local' => 'DC=mydomain,DC=local');

This is the LDAP domain info.

• You can have more than one domain if needed.
• It goes AD Prefix => Base DN

Example:¶

$ldap_domain_info = array('@mysite.com' => 'DC=mysite,DC=com');

Lets say you have a second domain called mysite2.net that you want to authenticate to as well:
$ldap_domain_info = array('@mysite.com' => 'DC=mysite,DC=com', '@mysite2.net' => 'DC=mysite2,DC=net');

$ldap_domain_controllers = array('dc01.mydomain.local');

Domain controller(s).

• You can use DNS names or IPs
• You can also have more than one

Example:¶

$ldap_domain_controllers = array('dc01.mysite.com');
More than one:
$ldap_domain_controllers = array('dc01.mysite.com', '192.168.1.2', 'dc04.mysite.com');

$staff_groups = array('Group' => 'Staff');

This is only required if you are going to use this for staff logins

Change for AD staff groups a user must be in to login

• AD_Group => Kayako_Staff_Team
• Case sensitive
• Can have more than one
  • The list goes in order of how its entered and stops when a user is found. So if the user is in more than one AD group that have a Staff Team he will only be apart of the team of the first AD group they are found in
  • So in the example below lets say you have a user in the Tech Support and Finance AD Group. They would only be a Support team because that one is before Sales on the list.

Example:¶

Let's say you have an AD group call Tech Support and you have a Kayako Staff Team called Support
$staff_groups = array('Tech Support' => 'Support');
More than one:
$staff_groups = array('Tech Support' => 'Support', 'IS' => 'Support', 'Finance' => 'Sales', 'Customer Service' => 'Sales');