<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
  <meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
  <title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
<title></title>
<br>
Hi Folks,<br>
<br>
Let me try to give all of you a scenario.<br>
In advance sorry for my English.<br>
<br>
I'm new to RT and Perl, but with some good skills with Linux.<br>
<br>
Have installed successfully RT, logging on with no errors with local
users end logging on successful with AD credentials except for one
error message in the browser.<br>
When I log on with AD credentials I get an error message then I click
in browser's address bar press enter and I'm logged on.<br>
Haven't tried the system (RT) yet because of this error, but things
look OK apparently.<br>
<br>
Below are some information about version I'm using and logs from
rt.log, at the bottom a copy of my RT_SiteConfig.pm.<br>
<br>
Some readings I made pointed to a filter problem, I have tried some
combinations but no success.<br>
I'm using RT-Authen-ExternalAuth-0.07_01.<br>
I also tryed RT-Authen-ExternalAuth-0.06_02 (browser error below, no
log info).<br>
<br>
Probably the solution is blinking in front of my eyes but I can't see
it.<br>
<br>
<b>Any suggestion, link, etc is appreciate.</b><br>
<br>
<br>
Here goes the extra information.<br>
<br>
<br>
<br>
<br>
<br>
------------------<br>
Installed versions<br>
------------------<br>
<br>
Windows 2000 AD<br>
<br>
RT 3.8.1<br>
RTFM 2.4.0<br>
RT-Authen-ExternalAuth-0.07_01<br>
<br>
mod_perl 2.0.2-2.4<br>
<br>
<br>
<br>
-------------------------<br>
Local user login (rt.log)<br>
-------------------------<br>
==> rt.log <==<br>
[Fri Dec  5 12:00:01 2008] [error]: Working around bug in RT and
reloading RT::User
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:12)<br>
[Fri Dec  5 12:00:02 2008] [debug]: $pass defined (senhadoroot),
Running IsPassword
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:69)<br>
[Fri Dec  5 12:00:02 2008] [debug]: Trying External Authentication (
root )
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/User_Vendor.pm:24)<br>
[Fri Dec  5 12:00:02 2008] [debug]: Attempting to use external auth
service: My_LDAP
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:150)<br>
[Fri Dec  5 12:00:02 2008] [debug]: Trying external auth service:
My_LDAP
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:13)<br>
[Fri Dec  5 12:00:02 2008] [debug]: LDAP Search ===  Base:
dc=alergs,dc=br == Filter: (&(sAMAccountName=root)) == Attrs: dn
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:40)<br>
[Fri Dec  5 12:00:02 2008] [info]: My_LDAP AUTH FAILED: root User not
found or more than one user found
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:63)<br>
[Fri Dec  5 12:00:02 2008] [debug]: RT::User::IsPassword EXTERNAL AUTH
FAILED
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/User_Vendor.pm:30)<br>
[Fri Dec  5 12:00:02 2008] [info]: RT::User::IsPassword INTERNAL AUTH
OKAY: root
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/User_Vendor.pm:43)<br>
[Fri Dec  5 12:00:02 2008] [debug]: UserExists params:<br>
username: root , service: My_LDAP
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:271)<br>
[Fri Dec  5 12:00:02 2008] [debug]: LDAP Search ===  Base:
dc=alergs,dc=br == Filter: (&(sAMAccountName=root)) == Attrs:
cn,mail,sAMAccountName
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:301)<br>
[Fri Dec  5 12:00:02 2008] [debug]: User Check Failed :: ( My_LDAP )
root User not found
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:315)<br>
[Fri Dec  5 12:00:02 2008] [debug]: User ( root ) doesn't exist in
service ( My_LDAP ) - Cannot update information - Skipping...
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:218)<br>
[Fri Dec  5 12:00:02 2008] [info]: User marked as ENABLED ( root ) per
External Service (0, That is already the current value)
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:70)<br>
[Fri Dec  5 12:00:02 2008] [debug]:
RT::Authen::ExternalAuth::CanonicalizeUserInfo called by RT::User
/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/User_Vendor.pm 87
with: Name: root
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:257)<br>
[Fri Dec  5 12:00:02 2008] [debug]: Attempting to get user info using
this external service: My_LDAP
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:265)<br>
[Fri Dec  5 12:00:02 2008] [debug]: Attempting to use this
canonicalization key: Name
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:274)<br>
[Fri Dec  5 12:00:02 2008] [debug]: LDAP Search ===  Base:
dc=alergs,dc=br == Filter: (&(sAMAccountName=root)) == Attrs:
cn,mail,sAMAccountName
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:192)<br>
[Fri Dec  5 12:00:02 2008] [debug]: Attempting to use this
canonicalization key: EmailAddress
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:274)<br>
[Fri Dec  5 12:00:02 2008] [debug]: This attribute ( EmailAddress ) is
not defined in the attr_match_list for this service ( My_LDAP )
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:276)<br>
[Fri Dec  5 12:00:02 2008] [debug]: Attempting to use this
canonicalization key: RealName
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:274)<br>
[Fri Dec  5 12:00:02 2008] [debug]: This attribute ( RealName ) is not
defined in the attr_match_list for this service ( My_LDAP )
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:276)<br>
[Fri Dec  5 12:00:02 2008] [info]:
RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Name: root
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:338)<br>
[Fri Dec  5 12:00:03 2008] [debug]: UPDATED user ( root ) from External
Service
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:103)<br>
[Fri Dec  5 12:00:03 2008] [info]: Successful login for root from
172.30.10.10
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:112)<br>
<br>
<br>
<br>
Browser: successful login<br>
<br>
<br>
<br>
----------------------<br>
AC user login (rt.log)<br>
----------------------<br>
<br>
[Fri Dec  5 12:02:11 2008] [debug]: $pass defined (987654321), Running
IsPassword
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:69)<br>
[Fri Dec  5 12:02:11 2008] [debug]: Trying External Authentication (
dsi )
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/User_Vendor.pm:24)<br>
[Fri Dec  5 12:02:11 2008] [debug]: Attempting to use external auth
service: My_LDAP
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:150)<br>
[Fri Dec  5 12:02:11 2008] [debug]: Trying external auth service:
My_LDAP
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:13)<br>
[Fri Dec  5 12:02:11 2008] [debug]: LDAP Search ===  Base:
dc=alergs,dc=br == Filter: (&(sAMAccountName=dsi)) == Attrs: dn
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:40)<br>
[Fri Dec  5 12:02:11 2008] [debug]: Found LDAP DN:
CN=dsi,OU=Rede,OU=DSI - Sistemas e
Informatica,OU=Corporativo,DC=alergs,DC=br
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:72)<br>
<br>
<br>
<br>
Browser error message: <br>
with RT-Authen-ExternalAuth-0.07_01<br>
Can't call method "as_string" on an undefined value at
/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm
line 97,  line 514. <br>
<br>
with RT-Authen-ExternalAuth-0.06_02<br>
RT::User::UpdateFromExternal Unimplemented in HTML::Mason::Commands.
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth
line 73)<br>
<br>
<br>
<br>
<br>
================<br>
RT_SiteConfig.pm<br>
================<br>
<br>
Set($rtname , "ALERGS");<br>
Set($Organization , "rt.al.rs.gov.br");<br>
Set($Timezone , 'America/Sao_Paulo');<br>
<br>
Set($DatabaseType , 'mysql');<br>
Set($DatabaseHost   , 'localhost');<br>
Set($DatabaseRTHost , 'localhost');<br>
Set($DatabasePort , '3306');<br>
Set($DatabaseUser , 'rtuser');<br>
Set($DatabasePassword , '********');<br>
Set($DatabaseName , 'rt3');<br>
<br>
Set($WebDefaultStylesheet, 'web2');<br>
Set($WebPath, "");<br>
Set($WebDomain, 'rt.alergs.br' );<br>
Set($WebPort, 80);                    # + ($< * 7274) % 32766 +
($< && 1024));<br>
Set($WebBaseURL, '<a moz-do-not-send="true"
 class="moz-txt-link-freetext" href="http://">http://</a>' .
RT->Config->Get('WebDomain') . ':' .
RT->Config->Get('WebPort'));<br>
Set($WebURL, RT->Config->Get('WebBaseURL') .
RT->Config->Get('WebPath') . "/");<br>
<br>
Set($RTAddressRegexp , 'dsi.$\@al.rs.gov.br');<br>
Set($CorrespondAddress , '<a moz-do-not-send="true"
 class="moz-txt-link-abbreviated" href="mailto:dsi.rede@al.rs.gov.br">dsi.rede@al.rs.gov.br</a>');<br>
Set($CommentAddress , '<a moz-do-not-send="true"
 class="moz-txt-link-abbreviated" href="mailto:dsi.redeadm@al.rs.gov.br">dsi.redeadm@al.rs.gov.br</a>');<br>
<br>
#Set(@EmailInputEncodings, qw(utf-8 iso-8859-1 us-ascii));<br>
#Set($EmailOutputEncoding, 'utf-8');<br>
<br>
#Set($UseFriendlyFromLine, 1);<br>
#Set($FriendlyFromLineFormat, "\"%s via RT\" <%s>");<br>
<br>
Set($AutoLogoff, 30);                    # minutos<br>
<br>
#Set($DateTimeFormat, 'DefaultFormat');<br>
Set($DateDayBeforeMonth , 1);<br>
<br>
Set($EnableReminders,1);<br>
<br>
<br>
# temporario ate funcionar<br>
Set($LogDir, '/opt/rt3/var/log');<br>
Set($LogToFileNamed , "rt.log");<br>
# Set($LogToFile      , 'warning');<br>
Set($LogToFile      , 'debug');<br>
<br>
# problema de lentidao com ticket merge<br>
# adding<br>
# @LogToSyslogConf = ( socket => 'native' ) unless
(@LogToSyslogConf);<br>
# to RT_SiteConfig.pm sped up the merged ticket display from 260 seconds<br>
# to about 6 seconds for us. <br>
<br>
<br>
<br>
<br>
<br>
Set( @Plugins, (qw(RT::Authen::ExternalAuth RT::FM)));<br>
# /opt/rt3/local/plugins/RT-Authen-ExternalAuth/etc/RT_SiteConfig.pm<br>
<br>
<br>
<br>
Set($ExternalAuthPriority,  ['My_LDAP']);<br>
Set($ExternalInfoPriority,  ['My_LDAP']);<br>
Set($ExternalServiceUsesSSLorTLS,    0);<br>
Set($AutoCreateNonExternalUsers,    0);<br>
Set($ExternalSettings,      {<br>
        'My_LDAP'       =>  {<br>
                'type'                      =>  'ldap',<br>
                'auth'                      =>  1,<br>
                'info'                      =>  1,<br>
                'server'                    =>  'ds1.alergs.br',<br>
                #'user'                      =>  'cn=adrt,ou=Contas
de Servicos,ou=DSI - Sistemas e
Informatica,ou=Corporativo,dc=alergs,dc=br',<br>
                'user'                      => 
'cn=adrt,ou=Corporativo,dc=alergs,dc=br',<br>
                #'user'                      =>  'adrt',<br>
                'pass'                      =>  '********',<br>
                'base'                      =>  'dc=alergs,dc=br',<br>
                'filter'                    =>  '',<br>
#                'filter'                    => 
'(objectClass=user)',<br>
#                'd_filter'                  => 
'((&(objectCategory=person)(objectClass=user)(userAccountControl:1.2.840.113556.1.4.803:=2)(!name=_*)))',<br>
                'd_filter'                  =>  '',<br>
                'tls'                       =>  0,<br>
                'net_ldap_args'             => [    version => 
3   ],<br>
                'group'                     =>  'Domain Users',<br>
#                'group'                     =>  'DSI_Rede_Usu',<br>
                'group_attr'                =>  '',<br>
                'attr_match_list'           => [  'Name',<br>
                                                  'EmailAddress', <br>
                                                  'RealName'<br>
#                                                  'WorkPhone', <br>
#                                                  'Address1'<br>
                                               ],<br>
<br>
###### ATENCAO para a virgula no final da linha ########<br>
<br>
                'attr_map'                  =>  {   'Name' =>
'sAMAccountName',<br>
                                                    'EmailAddress'
=> 'mail',<br>
#                                                    'Organization'
=> 'physicalDeliveryOfficeName',<br>
                                                    'RealName' =>
'cn'<br>
#                                                    'ExternalAuthId'
=> 'sAMAccountName',<br>
#                                                    'Gecos' =>
'sAMAccountName',<br>
#                                                    'WorkPhone' =>
'telephoneNumber',<br>
#                                                    'Address1' =>
'streetAddress',<br>
#                                                    'City' => 'l',<br>
#                                                    'State' => 'st',<br>
#                                                    'Zip' =>
'postalCode',<br>
#                                                    'Country' =>
'co'<br>
                                                 }<br>
                               }<br>
               }<br>
);<br>
<br>
1;<br>
<br>
<div class="moz-signature">
<meta http-equiv="Content-Type" content="text/html; ">
<meta name="GENERATOR" content="GtkHTML/3.16.2">
Elton S. Fenner,<br>
<font size="2">Analista de Rede,</font><br>
<font size="1">Assembléia Legislativa do RS.</font><br>
<font size="1">+55 51 3210-1202</font>
</div>
<br>
<br>
<div class="moz-signature">-- <br>
<meta http-equiv="Content-Type" content="text/html; ">
<meta name="GENERATOR" content="GtkHTML/3.16.2">
Elton S. Fenner,<br>
<font size="2">Analista de Rede,</font><br>
<font size="1">Assembléia Legislativa do RS.</font><br>
<font size="1">+55 51 3210-1202</font>
</div>
<br>
</body>
</html>