Configure Required Multiple¶
Everything is pretty well documented in the /ldap/config.php file however here is a more inclusive documentation
These directions are only meant for use with multiple domains on different controllers
Delete¶
Delete from config.php
/**
* LDAP domain info
* AD Prefix => Base DN
* array('@mydomain.local' => 'DC=mydomain,DC=local')
*/
$ldap_domain_info = array('@mydomain.local' => 'DC=mydomain,DC=local');
/**
* Domain controller(s). You can use names or IPs
* You can have more than one domain server by using
* array('dc01.mydomain.local', 'dc02.mydomain.local', 'dc03.mydomain.local');
*/
$ldap_domain_controllers = array('dc01.mydomain.local');
Add¶
You now need to add $multiple_domains_controllers with an array for each domain and controllers.
Example¶
$multiple_domains_controllers = array(
array(
'domain_info' => array('@domain1.com' => 'DC=domain1,DC=com'),
'domain_controllers' => array('dc01.domain1.com'),
),
array(
'domain_info' => array('@domain2.com' => 'DC=domain2,DC=com'),
'domain_controllers' => array('dc02.domain2.com'),
),
);
Notice how each domain has it's own array.
So another example lets say you have domain3.com and dc03.domain3.com is the controller that knows about it
$multiple_domains_controllers = array(
array(
'domain_info' => array('@domain1.com' => 'DC=domain1,DC=com'),
'domain_controllers' => array('dc01.domain1.com'),
),
array(
'domain_info' => array('@domain2.com' => 'DC=domain2,DC=com'),
'domain_controllers' => array('dc02.domain2.com'),
),
array(
'domain_info' => array('@domain3.com' => 'DC=domain3,DC=com'),
'domain_controllers' => array('dc03.domain3.com'),
),
);
Another example let say that each domain has multiple controllers.
$multiple_domains_controllers = array(
array(
'domain_info' => array('@domain1.com' => 'DC=domain1,DC=com'),
'domain_controllers' => array('dc01.domain1.com', 'dc02.domain1.com', 'dc03.domain1.com'),
),
array(
'domain_info' => array('@domain2.com' => 'DC=domain2,DC=com'),
'domain_controllers' => array('dc02.domain2.com', 'dc02.domain2.com', 'dc03.domain2.com', 'dc04.domain2.com', 'dc05.domain2.com'),
),
array(
'domain_info' => array('@domain3.com' => 'DC=domain3,DC=com'),
'domain_controllers' => array('dc03.domain3.com', 'dc02.domain3.com'),
),
);
You can also group domains and controllers together. Lets say that domain1.com and domain3.com are all on the same controllers and only domain2 is not.
$multiple_domains_controllers = array(
array(
'domain_info' => array('@domain1.com' => 'DC=domain1,DC=com', '@domain3.com' => 'DC=domain3,DC=com'),
'domain_controllers' => array('dc01.domain1.com', 'dc02.domain1.com', 'dc03.domain1.com'),
),
array(
'domain_info' => array('@domain2.com' => 'DC=domain2,DC=com'),
'domain_controllers' => array('dc02.domain2.com', 'dc02.domain2.com', 'dc03.domain2.com', 'dc04.domain2.com', 'dc05.domain2.com'),
),
);
$staff_groups = array('Group' => 'Staff');
This is only required if you are going to use this for staff logins
If you are not sure what this part is for please see the Setup page and Staff setup.
Change for AD staff groups a user must be in to login
- AD_Group => Kayako_Staff_Team
- Case sensitive
- Can have more than one
- The list goes in order of how its entered and stops when a user is found. So if the user is in more than one AD group that have a Staff Team he will only be apart of the team of the first AD group they are found in
- So in the example below lets say you have a user in the Tech Support and Finance AD Group. They would only be a Support team because that one is before Sales on the list.
Example:¶
Let's say you have an AD group call Tech Support and you have a Kayako Staff Team called Support$staff_groups = array('Tech Support' => 'Support');
More than one:$staff_groups = array('Tech Support' => 'Support', 'IS' => 'Support', 'Finance' => 'Sales', 'Customer Service' => 'Sales');