[rt-users] Not able to create external users with external auth

aniket tripathy aniket.tripathy at gmail.com
Fri Jan 13 02:47:14 EST 2017


Thanks Claude.

We had the permissions configured to allow *everyone to raise ticket*.
Where we went wrong was in the attr_match_list, for configuring the
external-auth, we were giving the RealName as well. Commenting it out
worked.

Referred:
http://requesttracker.8502.n7.nabble.com/username-same-but-realname-and-email-is-different-for-existing-user-compare-to-ldap-attribute-causedd-td7105.html

-Aniket

On Wed, Jan 11, 2017 at 4:22 PM, Claude EDUMA <claudeduma at gmail.com> wrote:

> Hi Aniket,
>
> You must configure "queue everyone privilege" to permit them to create
> ticket.
>
> Thank you.
>
> 2017-01-11 11:47 GMT+01:00 aniket tripathy <aniket.tripathy at gmail.com>:
>
>> hello,
>>
>> We are using RT 4.4 and using the external authentication mechanism from
>> a remote DB to authenticate the user. To enable others to create ticket we
>> have enabled *AutoCreateNonExternalUsers*. But any mails from outside
>> gets the response.
>>
>> *"You do not have permission to communicate with RT".*
>>
>>  Set( $UserAutocreateDefaultsOnLogin, { Privileged => 1 } );
>>  Set($AutoCreateNonExternalUsers, 1);
>>  Set( $ExternalAuthPriority, ["My_SSO_Cookie"] );
>>  Set( $ExternalInfoPriority, ["My_MySQL"] );
>>  Set($AutoCreateNonExternalUsers, 1);
>>
>> At the queue level, I have given everyone the right to  create and reply
>> to tickets.
>>
>> The logs are like:
>>
>> [11230] [Wed Jan 11 16:07:08 2017] [info]: RT::Authen::ExternalAuth::DBI::CanonicalizeUserInfo
>> INFO CHECK FAILED Key: rtUserName Value: <MyMailId> No User Found in
>> External Database! (/opt/rt4/sbin/../lib/RT/Authe
>> n/ExternalAuth/DBI.pm:400)
>> [11230] [Wed Jan 11 16:07:08 2017] [info]: RT::Authen::ExternalAuth::DBI::CanonicalizeUserInfo
>> INFO CHECK FAILED Key: emailId Value: <MyMailId> No User Found in External
>> Database! (/opt/rt4/sbin/../lib/RT/Authen/ExternalAuth/DBI.pm:400)
>> [11230] [Wed Jan 11 16:07:08 2017] [info]: RT::User::CanonicalizeUserInfoFromExternalAuth
>> returning Comments: Autocreated on ticket submission, Disabled: ,
>> EmailAddress: , Name: , Privileged: , RealName:
>>  (/opt/rt4/sbin/../lib/RT/User.pm:812)
>> [11230] [Wed Jan 11 16:07:08 2017] [warning]: Use of uninitialized value
>> $email in concatenation (.) or string at /opt/rt4/sbin/../lib/RT/User.pm
>> line 680. (/opt/rt4/sbin/../lib/RT/User.pm:680)
>> [11230] [Wed Jan 11 16:07:08 2017] [warning]: Use of uninitialized value
>> $args{"Name"} in concatenation (.) or string at
>> /opt/rt4/sbin/../lib/RT/User.pm line 143. (/opt/rt4/sbin/../lib/RT/User.
>> pm:143)
>> [11230] [Wed Jan 11 16:07:08 2017] [warning]: Use of uninitialized value
>> $args{"EmailAddress"} in concatenation (.) or string at
>> /opt/rt4/sbin/../lib/RT/User.pm line 143. (/opt/rt4/sbin/../lib/RT/User.
>> pm:143)
>> [11230] [Wed Jan 11 16:07:13 2017] [critical]: Failed to create user
>> <MyMailId>: Must specify 'Name' attribute (/opt/rt4/sbin/../lib/RT/User.
>> pm:546)
>> [11230] [Wed Jan 11 16:07:13 2017] [crit]: Permission Denied: You do not
>> have permission to communicate with RT (/opt/rt4/sbin/../lib/RT/Inter
>> face/Email.pm:697)
>>
>>
>> Am I missing any configuration at my end?
>>
>> Thanks.
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20170113/cd66aae9/attachment.htm>


More information about the rt-users mailing list