[rt-users] Weird issue with ExternalAuth and Ldap ( Have to login Twice every morning )

Albert Winteck awinteck at gmail.com
Wed Aug 8 09:44:53 EDT 2012


I am having this weird issue with ExternalAuth and Ldap and RT 4.0.6 and
hopefully someone can help me out.

FYI: I have no problems with the local users only the ldap users.


1. First RT 4.0.6 is working fine with no issues

2. Also I successfully installed the ExternalAuth plugin to enable LDAP
authentication

3. Clear the session tables and my local cookies

4. Pull up RT and Try to authenticate

5. The first time i tried to authenticate i get a "Wrong Password" message
(I entered the password right - all the time see log below)

6. I tried to authenticate again and it goes through in a blink of an eye

7. Now if i log out and log back in, the page spins for about a minutes and
a half  before letting me in.

8. Also when I log out, a ton of sessions ID are added to the session table.

9. If i clear the sessions table again but not clearing the local cookies,
when i tried to log in this time the page spins for a bout a 2 minutes and
i am able to log in with no problem.

10. There seem to be some kind of issues between the local cookies and the
server sessions that i am not able isolate yet.


*A synopsis of the log files:*

I keep getting a ton of these entries in my log files:

[Tue Aug  7 18:25:41 2012] [debug]: SSO Failed and no user to test with.
Nexting
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:214)
[Tue Aug  7 18:25:41 2012] [debug]: Attempting to use external auth
service: My_SSO_Cookie
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:186)
[Tue Aug  7 18:25:41 2012] [warning]: Use of uninitialized value in string
eq at
/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm
line 196.
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:196)


*complete log*
------------------
[Tue Aug  7 18:22:18 2012] [debug]: SSO Failed and no user to test with.
Nexting
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:214)
[Tue Aug  7 18:22:18 2012] [debug]: Autohandler called ExternalAuth.
Response: (0, No User)
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:11)
[Tue Aug  7 18:22:25 2012] [debug]: Attempting to use external auth
service: My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:186)
[Tue Aug  7 18:22:25 2012] [debug]: Calling UserExists with $username
(awinteck) and $service (My_LDAP)
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:227)
[Tue Aug  7 18:22:25 2012] [debug]: UserExists params:
username: awinteck , service: My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:299)
[Tue Aug  7 18:22:25 2012] [debug]: LDAP Search ===  Base:
ou=people,dc=ad,dc=awinserver,dc=com == Filter:
(&(objectClass=user)(sAMAccountName=awinteck)) == Attrs:
displayName,userPrincipalName,sAMAccountName
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:329)
[Tue Aug  7 18:22:25 2012] [debug]: Password validation required for
service - Executing...
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:277)
[Tue Aug  7 18:22:25 2012] [debug]: Trying external auth service: My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:16)
*[Tue Aug  7 18:24:25 2012] [critical]:
RT::Authen::ExternalAuth::LDAP::_GetBoundLdapObj : Cannot connect to
ad.awinserver.com(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:462)
*
[Tue Aug  7 18:24:25 2012] [debug]: LDAP password validation result: 0
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:463)
[Tue Aug  7 18:24:25 2012] [debug]: Password Validation Check Result:  0
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:281)
[Tue Aug  7 18:24:25 2012] [debug]: Attempting to use external auth
service: My_SSO_Cookie
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:186)
[Tue Aug  7 18:24:25 2012] [warning]: Use of uninitialized value in string
eq at
/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm
line 196.
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:196)
[Tue Aug  7 18:24:25 2012] [debug]: Calling UserExists with $username
(awinteck) and $service (My_SSO_Cookie)
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:227)
[Tue Aug  7 18:24:25 2012] [warning]: Use of uninitialized value in string
eq at
/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm
line 485.
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:485)
[Tue Aug  7 18:24:25 2012] [warning]: Use of uninitialized value in string
eq at
/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm
line 487.
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:485)
[Tue Aug  7 18:24:25 2012] [debug]: Invalid service type for UserExists:
My_SSO_Cookie
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:490)
[Tue Aug  7 18:24:25 2012] [debug]: Autohandler called ExternalAuth.
Response: (0, Password Invalid)
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:11)
[Tue Aug  7 18:24:25 2012] [error]: FAILED LOGIN for awinteck from
145.22.158.201(/opt/rt4/sbin/../lib/RT/Interface/Web.pm:685)
[Tue Aug  7 18:24:31 2012] [debug]: Attempting to use external auth
service: My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:186)
[Tue Aug  7 18:24:31 2012] [debug]: Calling UserExists with $username
(awinteck) and $service (My_LDAP)
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:227)
[Tue Aug  7 18:24:31 2012] [debug]: UserExists params:
username: awinteck , service: My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:299)
[Tue Aug  7 18:24:31 2012] [debug]: LDAP Search ===  Base:
ou=people,dc=ad,dc=awinserver,dc=com == Filter:
(&(objectClass=user)(sAMAccountName=awinteck)) == Attrs:
displayName,userPrincipalName,sAMAccountName
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:329)
[Tue Aug  7 18:24:31 2012] [debug]: Password validation required for
service - Executing...
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:277)
[Tue Aug  7 18:24:31 2012] [debug]: Trying external auth service: My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:16)
[Tue Aug  7 18:24:31 2012] [debug]: LDAP Search ===  Base:
ou=people,dc=ad,dc=awinserver,dc=com == Filter:
(&(sAMAccountName=awinteck)(objectClass=user)) == Attrs: dn
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:48)
[Tue Aug  7 18:24:31 2012] [debug]: Found LDAP DN:
CN=awinteck,OU=EMPLOYEE,OU=PEOPLE,DC=ad,DC=awinserver,DC=com
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:82)
*[Tue Aug  7 18:24:31 2012] [info]: RT::Authen::ExternalAuth::LDAP::GetAuth
External Auth OK ( My_LDAP ): awinteck
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:161)
*
[Tue Aug  7 18:24:31 2012] [debug]: LDAP password validation result: 1
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:463)
[Tue Aug  7 18:24:31 2012] [debug]: Password Validation Check Result:  1
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:281)
[Tue Aug  7 18:24:31 2012] [debug]: Authentication successful. Now updating
user information and attempting login.
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:301)
[Tue Aug  7 18:24:31 2012] [debug]: UserExists params:
username: awinteck , service: My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:299)
[Tue Aug  7 18:24:31 2012] [debug]: LDAP Search ===  Base:
ou=people,dc=ad,dc=awinserver,dc=com == Filter:
(&(objectClass=user)(sAMAccountName=awinteck)) == Attrs:
displayName,userPrincipalName,sAMAccountName
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:329)
[Tue Aug  7 18:24:31 2012] [debug]: UserExists params:
username: awinteck , service: My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:299)
[Tue Aug  7 18:24:31 2012] [debug]: LDAP Search ===  Base:
ou=people,dc=ad,dc=awinserver,dc=com == Filter:
(&(objectClass=user)(sAMAccountName=awinteck)) == Attrs:
displayName,userPrincipalName,sAMAccountName
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:329)
[Tue Aug  7 18:24:31 2012] [warning]: Use of uninitialized value $d_filter
in string eq at
/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm
line 385.
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:385)
[Tue Aug  7 18:24:31 2012] [debug]: No d_filter specified for this LDAP
service ( My_LDAP ), so considering all users enabled
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:389)
[Tue Aug  7 18:24:31 2012] [debug]:
RT::Authen::ExternalAuth::CanonicalizeUserInfo called by
RT::Authen::ExternalAuth
/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm
682 with: Name: awinteck
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:579)
[Tue Aug  7 18:24:31 2012] [debug]: Attempting to get user info using this
external service: My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:587)
[Tue Aug  7 18:24:31 2012] [debug]: Attempting to use this canonicalization
key: Name
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:601)
[Tue Aug  7 18:24:31 2012] [debug]: LDAP Search ===  Base:
ou=people,dc=ad,dc=awinserver,dc=com == Filter:
(&(objectClass=user)(sAMAccountName=awinteck)) == Attrs:
displayName,userPrincipalName,sAMAccountName
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:217)
[Tue Aug  7 18:24:31 2012] [info]:
RT::Authen::ExternalAuth::CanonicalizeUserInfo returning EmailAddress:
awinteck at awinserver.com, Name: awinteck, RealName: Albert
Winteck(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:665)
[Tue Aug  7 18:24:31 2012] [debug]: UPDATED user ( awinteck ) from External
Service
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:436)
[Tue Aug  7 18:24:31 2012] [info]: Successful login for awinteck from
145.22.158.201(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:341)
[Tue Aug  7 18:24:31 2012] [debug]: Autohandler called ExternalAuth.
Response: (1, Successful login)
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:11)
[Tue Aug  7 18:25:41 2012] [debug]: Attempting to use external auth
service: My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:186)
[Tue Aug  7 18:25:41 2012] [debug]: SSO Failed and no user to test with.
Nexting
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:214)
[Tue Aug  7 18:25:41 2012] [debug]: Attempting to use external auth
service: My_SSO_Cookie
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:186)
[Tue Aug  7 18:25:41 2012] [warning]: Use of uninitialized value in string
eq at
/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm
line 196.
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:196)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20120808/66aa2c88/attachment.htm>


More information about the rt-users mailing list