[rt-users] Problem on RT::Authen::ExternalAuth

Luis Avendaño lavendano at acmgrp.com
Tue Apr 12 17:30:47 EDT 2011


 

Hi, 

I have installed and configured the RT::Authen::ExternalAuth.  

My environment is: Solaris (sun4v sparc SUNW,Sun-Fire-T200), RT=3.8.9, BD=
PostgreSQL=10.2, LDAP = Active Directory 

I realized that when I load the RT main page, I always get the following
log, NOTHING ELSE RELATED TO ExternalAuth: 

******************* 

[Tue Apr 12 21:05:15 2011] [debug]: Reloading RT::User to work around a bug
in RT-3.8.0 and RT-3.8.1
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:14)
 [Tue Apr 12 21:05:28 2011] [debug]: Reloading RT::User to work around a
bug in RT-3.8.0 and RT-3.8.1
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:14)
 [Tue Apr 12 21:05:52 2011] [debug]: Attempting to use external auth
service: My_LDAP
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:64)
 [Tue Apr 12 21:05:52 2011] [debug]: SSO Failed and no user to test with.
Nexting
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:92)
 [Tue Apr 12 21:05:52 2011] [debug]: Autohandler called ExternalAuth.
Response: (0, No User)
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:26)


******************* 

However, when a LDAP user tries to login, the following error is logged: 

******************* 

[Tue Apr 12 21:05:06 2011] [error]: FAILED LOGIN for cdomi3 from
172.16.136.54 (/rt/rt3/bin/../lib/RT/Interface/Web.pm:555) 

******************* 

Any user which was locally created in RT, is able to log in. 

The ExternalAuth related configuration is as follows: 

--------------- 

#Set($WebExternalAuth, 1); 

#Set($WebExternalAuthContinuous, 1); 

#Set($WebExternalAuto , true);

Set($ExternalAuthPriority,  [   'My_LDAP'
                             ]
 ); 

Set($ExternalInfoPriority,  [
                                 'My_LDAP'
                             ]
 ); 

Set($ExternalServiceUsesSSLorTLS,    0); 

Set($AutoCreateNonExternalUsers,    0); 

#### SOME LDAPP INFORMATION HAS BEEN MODIFIED (IP ADDRESS OF THE SERVER,
DOMAINUSER', USERPASSWORD and  DC=COMPANY). 

Set($ExternalSettings,      {
                                
'My_LDAP'       =>  {   ## GENERIC SECTION
                                                        
'type'                      =>  'ldap',
                                                        
'server'                    =>  '',
                                                        
'user'                      =>  '',
                                                        
'pass'                    =>  '',
                                                        
'base'                      =>  ',DC=com,DC=ve',
                                                        
'filter'                    =>  '(objectClass=*)',
                                                        
'd_filter'                  => 
'(userAccountControl=514)',
                                                        
'tls'                       =>  0,
                                                        
#'ssl_version'               =>  3,
                                                        
'net_ldap_args'             => [    version =>  3   ],
                                                        
#'group'                     =>  'GROUP_NAME',
                                                        
#'group_attr'                =>  'GROUP_ATTR',
                                                        
'attr_match_list'           => [    'Name',
                                                                                            
'EmailAddress'
                                                                                          
#  'RealName',
                                                                                          
#  'WorkPhone'
                                                                                        
],
                                                        
'attr_map'                  =>  {   'Name' =>
'sAMAccountName',
                                                                                            
'EmailAddress' => 'mail',
                                                                                            
'RealName' => 'cn',
                                                                                            
'WorkPhone' => 'telephoneNumber'
                                                                                        
}
                                                    
}
                                 }
 ); 

Set( @Plugins, qw( RT::Authen::ExternalAuth ) ); 

Set( %GnuPG, Enable => 0);

---------------- 

 I have done a lot of research, but no luck so far.... 

I really appreciate any help that you can provide me guys, 

Best Regards, 

____________________________________________________________________________________


 Luis Avendaño 
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20110412/1e348745/attachment.htm>


More information about the rt-users mailing list