[rt-users] Trouble using RT::Authen::ExternalAuth with OpenLDAP on Centos 5.5

Donny Brooks dbrooks at mdah.state.ms.us
Fri Mar 11 10:09:38 EST 2011


On 3/10/2011 4:37 PM, Kevin Falcone wrote:
> On Thu, Mar 10, 2011 at 04:18:17PM -0600, Donny Brooks wrote:
>> Hello all,
>>
>>       I have setup RT 3.8.9 on a Centos 5.5 machine according to the
>> directions located here:
>> http://home.roadrunner.com/~computertaijutsu/rt3.html. I was able to
> You don't mention what version of RT::Authen::ExternalAuth you're
> trying, if you read the archives you'll see that you need 0.08_01.
>
> -kevin
>
That did it. Thanks Kevin! I was using 0.08 so I downloaded and compiled 
the 0.08_01 and all seems to work now.
>> get it installed as far as I can tell successfully and I am now
>> going for external ldap authentication. I have followed the wiki
>> pages that I have found on it as well as the README but do not seem
>> to be able to get it going correctly. When I try to login as a user
>> with my correct username and password I just get the incorrect
>> user/pass page. Also, when trying to add the user to RT via the web
>> interface under Configuration-Users-Create I get:
>>
>> "User could not be created: Could not set user info"
>>
>> and in the apache error logs I get:
>>
>> [Thu Mar 10 21:44:58 2011] [info]:
>> RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Address1: ,
>> Address2: , AuthSystem: , City: , Comments: , ContactInfoSystem: ,
>> Country: , Disabled: 0, EmailAddress: , EmailEncoding: ,
>> ExternalAuthId: , ExternalContactInfoId: , FreeformContactInfo: ,
>> Gecos: , HomePhone: , Lang: , MobilePhone: , Name: dbrooks,
>> NickName: , Organization: , PagerPhone: , Privileged: , RealName: ,
>> Signature: , State: , WebEncoding: , WorkPhone: , Zip:  (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:536)
>>
>> It appears as though the RT machine is not talking to my OpenLDAP
>> server properly. Below is my /opt/rt3/etc/RT_SiteConfig.pm
>>
>> Set( $rtname, 'mdah.state.ms.us');
>> Set( @Plugins, qw(RT::Authen::ExternalAuth) );
>> Set($ExternalAuthPriority,  [ 'My_LDAP' ] );
>> Set($ExternalInfoPriority,  [ 'My_LDAP' ] );
>> Set($ExternalServiceUsesSSLorTLS,    0);
>> Set($AutoCreateNonExternalUsers,     0);
>>
>> Set($ExternalSettings,      {
>>                                  'My_LDAP'       =>   {
>> 'type'                      =>   'ldap',
>> 'server'                    =>   'ldap.mdah.state.ms.us',
>> 'user'                      =>   'cn=Manager,dc=mdah,dc=state,dc=ms,dc=us',
>> 'pass'                    =>   'ldappassword',
>> 'base'                      =>   'dc=mdah,dc=state,dc=ms,dc=us',
>> 'filter'                    =>   '(objectClass=People)',
>> 'd_filter'                  =>   '(objectClass=FooBarBaz)',
>> 'tls'                       =>   0,
>> 'ssl_version'               =>   3,
>> 'net_ldap_args'             =>  [    version =>   3   ],
>> 'attr_match_list'           =>  [    'Name',
>>                                                                                              'EmailAddress'
>>                                                                                          ],
>> 'attr_map'                  =>   {   'Name' =>  'uid',
>>                                                                                              'EmailAddress' =>  'mail'
>>                                                                                          }
>>                                                          }
>>                          }
>> );
>> 1;
>>
>>
>> Am I missing something obvious? Been at this all day and no closer
>> to finding the problem it appears. I do appreciate any guidance.
>>
>> Donny B.




More information about the rt-users mailing list