<table cellspacing="0" cellpadding="0" border="0" ><tr><td valign="top" style="font: inherit;"><DIV>Hi, Mike,</DIV>
<DIV> </DIV>
<DIV>Thanks, I tried your suggestions, base should be correct, because we have other service also using this ldap server. I limmted attr_map to just email and externalAuthId, it still gave same error message.</DIV>
<DIV>Following are are detailed debug information.</DIV>
<DIV> </DIV>
<DIV>Thanks and Regards,</DIV>
<DIV> </DIV>
<DIV>Ben</DIV>
<DIV> </DIV>
<DIV>[Wed Sep 2 22:47:45 2009] [critical]: RT::User::_GetBoundLdapObj Can't bind: LDAP_INVALID_DN_SYNTAX 34 (/usr/local/lib/rt3/lib/RT/User_Vendor.pm:1056)<BR>[Wed Sep 2 22:47:45 2009] [debug]: RT::User::IsExternalPassword Trying External authentication (/usr/local/lib/rt3/lib/RT/User_Vendor.pm:52)<BR>[Wed Sep 2 22:47:45 2009] [debug]: Attempting to use external auth service: My_LDAP (/usr/local/lib/rt3/lib/RT/User_Vendor.pm:63)<BR>[Wed Sep 2 22:47:45 2009] [critical]: RT::User::_GetBoundLdapObj Can't bind: LDAP_INVALID_DN_SYNTAX 34 (/usr/local/lib/rt3/lib/RT/User_Vendor.pm:1056)<BR>[Wed Sep 2 22:47:45 2009] [info]: RT::User::IsExternalPassword External Auth Failed: yhuang (/usr/local/lib/rt3/lib/RT/User_Vendor.pm:294)<BR>[Wed Sep 2 22:47:45 2009] [debug]: RT::User::IsPassword External auth FAILED (/usr/local/lib/rt3/lib/RT/User_Vendor.pm:360)<BR>[Wed Sep 2 22:47:45 2009] [info]: RT::User::IsInternalPassword AUTH
FAILED: ben (/usr/local/lib/rt3/lib/RT/User_Vendor.pm:331)<BR>[Wed Sep 2 22:47:45 2009] [debug]: RT::User::IsPassword Internal auth FAILED (/usr/local/lib/rt3/lib/RT/User_Vendor.pm:366)<BR>[Wed Sep 2 22:47:45 2009] [error]: FAILED LOGIN for ben from 10.64.16.119 (/usr/share/rt3/html/autohandler:251)<BR><BR>--- On <B>Wed, 9/2/09, Michael Ellis <I><Michael_Ellis@umanitoba.ca></I></B> wrote:<BR></DIV>
<BLOCKQUOTE style="BORDER-LEFT: rgb(16,16,255) 2px solid; PADDING-LEFT: 5px; MARGIN-LEFT: 5px"><BR>From: Michael Ellis <Michael_Ellis@umanitoba.ca><BR>Subject: RE: [rt-users] RT::Authen::ExternalAuth error<BR>To: "'Ben'" <uyhis@yahoo.com>, rt-users@lists.bestpractical.com<BR>Date: Wednesday, September 2, 2009, 5:00 PM<BR><BR>
<DIV id=yiv2083904230>
<STYLE>
<!--
#yiv2083904230
_filtered #yiv2083904230 {font-family:"Cambria Math";panose-1:2 4 5 3 5 4 6 3 2 4;}
_filtered #yiv2083904230 {font-family:Calibri;panose-1:2 15 5 2 2 2 4 3 2 4;}
_filtered #yiv2083904230 {font-family:Tahoma;panose-1:2 11 6 4 3 5 4 4 2 4;}
#yiv2083904230
#yiv2083904230 p.MsoNormal, #yiv2083904230 li.MsoNormal, #yiv2083904230 div.MsoNormal
{margin:0cm;margin-bottom:.0001pt;font-size:12.0pt;font-family:"Times New Roman", "serif";}
#yiv2083904230 a:link, #yiv2083904230 span.MsoHyperlink
{color:blue;text-decoration:underline;}
#yiv2083904230 a:visited, #yiv2083904230 span.MsoHyperlinkFollowed
{color:purple;text-decoration:underline;}
#yiv2083904230 span.yshortcuts
{}
#yiv2083904230 span.EmailStyle18
{font-family:"Calibri", "sans-serif";color:#1F497D;}
#yiv2083904230 .MsoChpDefault
{}
_filtered #yiv2083904230 {margin:72.0pt 72.0pt 72.0pt 72.0pt;}
#yiv2083904230 div.Section1
{}
-->
</STYLE>
<DIV class=Section1>
<P class=MsoNormal><SPAN style="FONT-FAMILY: 'Calibri', 'sans-serif'; COLOR: #1f497d; FONT-SIZE: 11pt">Hi Ben,</SPAN></DIV>
<P class=MsoNormal><SPAN style="FONT-FAMILY: 'Calibri', 'sans-serif'; COLOR: #1f497d; FONT-SIZE: 11pt"> </SPAN></DIV>
<P class=MsoNormal><SPAN style="FONT-FAMILY: 'Calibri', 'sans-serif'; COLOR: #1f497d; FONT-SIZE: 11pt">Barring things like the user not being authorized, or your base being incorrect, try limiting your attr_map down to just the essentials. I got errors trying to map things that I thought should work just fine. I can’t remember what error I got, but it wasn’t descriptive and it caused a complete failure of the process.</SPAN></DIV>
<P class=MsoNormal><SPAN style="FONT-FAMILY: 'Calibri', 'sans-serif'; COLOR: #1f497d; FONT-SIZE: 11pt"> </SPAN></DIV>
<P class=MsoNormal><SPAN style="FONT-FAMILY: 'Calibri', 'sans-serif'; COLOR: #1f497d; FONT-SIZE: 11pt">-Mike</SPAN></DIV>
<P class=MsoNormal><SPAN style="FONT-FAMILY: 'Calibri', 'sans-serif'; COLOR: #1f497d; FONT-SIZE: 11pt"> </SPAN></DIV>
<P class=MsoNormal><SPAN style="FONT-FAMILY: 'Calibri', 'sans-serif'; COLOR: #1f497d; FONT-SIZE: 11pt"> </SPAN></DIV>
<DIV style="BORDER-BOTTOM: medium none; BORDER-LEFT: medium none; PADDING-BOTTOM: 0cm; PADDING-LEFT: 0cm; PADDING-RIGHT: 0cm; BORDER-TOP: #b5c4df 1pt solid; BORDER-RIGHT: medium none; PADDING-TOP: 3pt">
<P class=MsoNormal><B><SPAN style="FONT-FAMILY: 'Tahoma', 'sans-serif'; FONT-SIZE: 10pt" lang=EN-US>From:</SPAN></B><SPAN style="FONT-FAMILY: 'Tahoma', 'sans-serif'; FONT-SIZE: 10pt" lang=EN-US> rt-users-bounces@lists.bestpractical.com [mailto:rt-users-bounces@lists.bestpractical.com] <B>On Behalf Of </B>Ben<BR><B>Sent:</B> September-02-09 2:20 PM<BR><B>To:</B> rt-users@lists.bestpractical.com<BR><B>Subject:</B> [rt-users] RT::Authen::ExternalAuth error</SPAN></DIV></DIV>
<P class=MsoNormal> </DIV>
<TABLE class=MsoNormalTable border=0 cellSpacing=0 cellPadding=0>
<TBODY>
<TR>
<TD style="PADDING-BOTTOM: 0cm; PADDING-LEFT: 0cm; PADDING-RIGHT: 0cm; PADDING-TOP: 0cm" vAlign=top>
<DIV>
<P class=MsoNormal>Hi, All,</DIV></DIV>
<DIV>
<P class=MsoNormal> </DIV></DIV>
<DIV>
<P class=MsoNormal>I have errors with RT 3.6.5 and RT-Authen-ExternalAuth-0.05 on my centos box.</DIV></DIV>
<DIV>
<P class=MsoNormal>following are error messages:</DIV></DIV>
<DIV>
<P class=MsoNormal>[Tue Sep 1 23:39:32 2009] [critical]: RT::User::_GetBoundLdapObj Can't bind: LDAP_INVALID_DN_SYNTAX 34 (/usr/local/lib/rt3/lib/RT/User_Vendor.pm:1056)<BR>[Tue Sep 1 23:39:32 2009] [critical]: RT::User::_GetBoundLdapObj Can't bind: LDAP_INVALID_DN_SYNTAX 34 (/usr/local/lib/rt3/lib/RT/User_Vendor.pm:1056)</DIV></DIV>
<DIV>
<P class=MsoNormal> </DIV></DIV>
<DIV>
<P class=MsoNormal>And my configuration:</DIV></DIV>
<DIV>
<P class=MsoNormal> </DIV></DIV>
<DIV>
<P class=MsoNormal>Set( @Plugins, qw(RT::Authen::ExternalAuth) ); <BR>Set($ExternalAuthPriority, [ 'My_LDAP' ]);<BR>Set($ExternalInfoPriority, [ 'My_LDAP' ]);</DIV></DIV>
<DIV>
<P class=MsoNormal><BR>Set($ExternalServiceUsesSSLorTLS, 0);<BR>Set($AutoCreateNonExternalUsers, 0);</DIV></DIV>
<DIV>
<P class=MsoNormal>Set($ExternalSettings, { <BR> 'My_LDAP' => { <BR> 'type'=>'ldap',<BR>
'auth'=>1,<BR> 'info'=> 1,<BR> 'server'=> '<A href="http://tldap01.smith.com/" rel=nofollow target=_blank><SPAN class=yshortcuts>tldap01.smith.com</SPAN></A>',<BR> 'user'
=> 'rt3',<BR> 'pass' => 'mypassword',<BR> 'base'=> 'ou=people,dc=smith,dc=com',</DIV></DIV>
<DIV>
<P class=MsoNormal> 'filter'=> '(objectClass=person)',<BR> 'd_filter' =>
'(userAccountControl:1.2.840.113556.1.4.803:=2)',<BR> 'tls' => 0,<BR> 'net_ldap_args' =>
[ version => 3 ],<BR> # 'group' => 'GROUP_NAME',<BR> #
'group_attr' => 'GROUP_ATTR',<BR> 'attr_match_list' => [
'Name',<BR> 'EmailAddress',
<BR>
'RealName',<BR> 'WorkPhone',
<BR>
'Address2'<BR> ],<BR>
'attr_map' => { 'Name' => 'sAMAccountName',<BR> 'EmailAddress' =>
'mail',<BR> 'Organization' =>
'physicalDeliveryOfficeName',<BR> 'RealName' =>
'cn',<BR> 'ExternalAuthId' =>
'sAMAccountName',<BR> 'Gecos' =>
'sAMAccountName',<BR> 'WorkPhone' =>
'telephoneNumber',<BR> 'Address1' =>
'streetAddress',<BR> 'City' =>
'l',<BR> 'State' =>
'st',<BR> 'Zip' =>
'postalCode',<BR> 'Country' =>
'co'<BR> }<BR>
}<BR> }</DIV></DIV>
<DIV>
<P class=MsoNormal> </DIV></DIV>
<DIV>
<P class=MsoNormal> </DIV></DIV>
<DIV>
<P class=MsoNormal>Am I doing soething wrong? </DIV></DIV>
<DIV>
<P class=MsoNormal> </DIV></DIV>
<DIV>
<P class=MsoNormal>Thanks, Please advise.</DIV></DIV>
<DIV>
<P class=MsoNormal> </DIV></DIV>
<DIV>
<P class=MsoNormal> </DIV></DIV>
<DIV>
<P class=MsoNormal>Regards,</DIV></DIV>
<DIV>
<P class=MsoNormal>Ben</DIV></DIV></TD></TR></TBODY></TABLE>
<P class=MsoNormal><SPAN style="FONT-FAMILY: 'Calibri', 'sans-serif'; FONT-SIZE: 10pt"> </SPAN></DIV></DIV></DIV></BLOCKQUOTE></td></tr></table><br>