<div>Hi,</div>
<div> </div>
<div>Try turning on RT's logging in debug mode. That helped me figure out what was going on with my ExternalAuth. In the log, before the FAILED line you should see a few lines showing you if it's connecting to your LDAP, finding user etc.</div>
<div> </div>
<div>Work from there!</div>
<div>Mike.<br><br></div>
<div class="gmail_quote">On Wed, Jul 28, 2010 at 3:23 AM, Anthony BRODARD <span dir="ltr"><<a href="mailto:brodard.anthony@gmail.com">brodard.anthony@gmail.com</a>></span> wrote:<br>
<blockquote style="BORDER-LEFT: #ccc 1px solid; MARGIN: 0px 0px 0px 0.8ex; PADDING-LEFT: 1ex" class="gmail_quote">Hi,<br>
<div class="gmail_quote">
<div><br></div>
<div>I've installed RT 3.8.7 on a debian lenny with the manual procedure listed here: <a href="http://wiki.bestpractical.com/view/ExternalAuth" target="_blank">http://wiki.bestpractical.com/view/ExternalAuth</a></div>
<div><br></div>
<div>So, now i try to configure my RT_Siteconfig.pm to acces at RT via my LDAPS serveur.</div>
<div><br></div>
<div>This is a part of my configuration:</div>
<div><br></div>
<div> #PLUGINS:</div>
<div>Set(@Plugins,(qw(</div>
<div> RT::Extension::MandatorySubject</div>
<div> RT::Extension::MandatoryRequestor</div>
<div> RT::Extension::SearchResults::XLS</div>
<div> RT::Extension::UserDetails</div>
<div> RT::FM</div>
<div> RT::IR</div>
<div> RTx::Tags</div>
<div> RT::Extension::WatchedQueues</div>
<div> RT::Extension::ServiceUpdates</div>
<div> RT::Authen::ExternalAuth</div>
<div> )));</div>
<div>
<div># AUTHENTICATION</div>
<div><br></div>
<div>Set($ExternalAuthPriority, ['LDAP',]</div>
<div>);</div>
<div><br></div>
<div>Set($ExternalInfoPriority, ['LDAP',]</div>
<div>);</div>
<div><br></div>
<div>Set($ExternalServiceUsesSSLorTLS, 1);</div>
<div><br></div>
<div># DATABASES CONFIGURATION</div>
<div>Set($ExternalSettings,</div>
<div> {</div>
<div> 'LDAP' => {</div>
<div> 'type' => 'ldap',</div>
<div> 'server' => 'ldap.BLANKED',</div>
<div> 'user' => 'BLANKED',</div>
<div> 'pass' => 'BLANKED',</div>
<div> 'base' => 'dc=blanked,dc=fr',</div>
<div> 'filter' => '(uid=*)',</div>
<div> 'd_filter' => '(objectClass=foobar)',</div>
<div> 'tls' => 1,</div>
<div> 'ssl_version' => 3,</div>
<div> 'net_ldap_args' => [ version => 3 ],</div>
<div># 'group' => 'GROUP-NAME',</div>
<div># 'group_attr' => 'GROUP_ATTR',</div>
<div> 'attr_match_list' => 'uid',</div>
<div> 'attr_map' => {</div>
<div> 'Name' => 'uid',</div>
<div> 'EmailAddress' => 'mail',</div>
<div># 'Organization' => '',</div>
<div> 'RealName' => 'cn',</div>
<div># 'ExternalAuthId' => '',</div>
<div># 'Gecos' => '',</div>
<div># 'WorkPhone' => 'telephonenumber',</div>
<div># 'Address1' => '',</div>
<div># 'City' => '',</div>
<div># 'State' => '',</div>
<div># 'Zip' => '',</div>
<div># 'Country' => ''</div>
<div> }</div>
<div> }</div>
<div> },</div>
<div> );</div>
<div>1;</div>
<div><br></div>
<div>When i try to log on, i have a message which said that m'y username or my password isn't correct.</div>
<div><br></div>
<div>In the log files (/var/log/apache2/error.log), i have only :</div>
<div><br></div>
<div>
<div>[Tue Jul 27 14:35:28 2010] [error]: FAILED LOGIN for anthony.brodard from MY_IP (/opt/rt3/bin/../lib/RT/Interface/Web.pm:424)</div></div>
<div><br></div>
<div><br></div>
<div>Do you know where is the mistake?</div>
<div><br></div>
<div>After that, i want to activate a session's timeout on RT with mod_perl. Do you know how can i do?</div>
<div><br></div>
<div>Regards,</div>
<div>Anthony BRODARD</div>
<div><br></div>
<div><br></div>
<div><br></div></div></div><br><br><br>Discover RT's hidden secrets with RT Essentials from O'Reilly Media.<br>Buy a copy at <a href="http://rtbook.bestpractical.com/" target="_blank">http://rtbook.bestpractical.com</a><br>
</blockquote></div><br><br clear="all"><br>-- <br>Mike Johnson<br>Datatel Programmer/Analyst<br>Northern Ontario School of Medicine<br>955 Oliver Road<br>Thunder Bay, ON P7B 5E1<br>Phone: (807) 766-7331<br>Email: <a href="mailto:mike.johnson@nosm.ca">mike.johnson@nosm.ca</a><br>