
Kevin,<br><br>Would this option require the use of a check to the DataBase? A'la My_Oracle as a secondary External Setting?<br><br>I'm in the same situation where we have some outside consultants that are NOT in our LDAP database, but need to reply/own tickets in RT.<br>

I was looking at the RT_SiteConfig.pm setting options in /opt/rt3/local/plugins/RT-Authen-ExternalAuth/etc and saw the instructions for 'My_My_SQL'.<br><br>These are the parameters I used:<br><br><meta http-equiv="Content-Type" content="text/html; charset=utf-8"><meta name="ProgId" content="Word.Document"><meta name="Generator" content="Microsoft Word 11"><meta name="Originator" content="Microsoft Word 11"><link rel="File-List" href="file:///C:%5CDOCUME%7E1%5CKFCROC%7E1%5CLOCALS%7E1%5CTemp%5Cmsohtml1%5C01%5Cclip_filelist.xml"><style>

<!--

 /* Style Definitions */

 p.MsoNormal, li.MsoNormal, div.MsoNormal

        {mso-style-parent:"";

        margin:0in;

        margin-bottom:.0001pt;

        mso-pagination:widow-orphan;

        font-size:12.0pt;

        font-family:"Times New Roman";

        mso-fareast-font-family:"Times New Roman";}

@page Section1

        {size:8.5in 11.0in;

        margin:1.0in 1.25in 1.0in 1.25in;

        mso-header-margin:.5in;

        mso-footer-margin:.5in;

        mso-paper-source:0;}

div.Section1

        {page:Section1;}

-->

</style>


<p class="MsoNormal"><b style="">Set($ExternalAuthPriority,<span style="">  </span>[ 'My_LDAP', ‘My_Oracle’] );</b></p>


<p class="MsoNormal"><b style="">Set($ExternalInfoPriority,<span style="">  </span>[ 'My_LDAP' ] );</b></p>


<p class="MsoNormal"><b style="">Set($ExternalServiceUsesSSLorTLS,

1);</b></p>


<p class="MsoNormal"><b style="">Set($AutoCreateNonExternalUsers,

0);</b></p>


<p class="MsoNormal">#</p>


<p class="MsoNormal"># These are the full settings for each external service as a

HashOfHashes</p>


<p class="MsoNormal">#</p>


<p class="MsoNormal"><b style="">Set(</b></p>


<p class="MsoNormal"><b style=""><span style="">    </span>$ExternalSettings,</b></p>


<p class="MsoNormal"><b style=""><span style="">      </span>{</b></p>


<p class="MsoNormal"><b style=""><span style="">        </span>'My_LDAP' =></b></p>


<p class="MsoNormal"><b style=""><span style="">           </span>{</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>Our LDAP stuff - <u>Works well</u></b></p><p class="MsoNormal"> <b>           }<br></b><b style=""></b></p>


<p class="MsoNormal"><b style=""><span style="">      </span>},</b></p>


<b style=""><span style="font-size: 12pt; font-family: "Times New Roman";"># Settings for secondary Auth - using our Oracle DataBase<br style="page-break-before: always;" clear="all">

</span></b>


<p class="MsoNormal"><b style=""><span style=""> </span><span style="">     </span>{</b></p>


<p class="MsoNormal"><b style=""><span style="">        </span>'My_Oracle' =></b></p>


<p class="MsoNormal"><b style=""><span style="">    </span><span style="">       </span>{</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘type’<span style="">           </span>=> 'db',</b></p>


<p class="MsoNormal"><b style=""><span style="">           </span><span style=""> </span>‘server’<span style="">       

</span>=> 'luther',</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘database’<span style="">   </span>=> ‘rtdev’,</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘table’<span style="">          </span>=><span style=""> 

</span>‘USERS’,</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘user’<span style="">           </span>=><span style="">  </span>‘OURID’,</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘pass’<span style="">           </span>=><span style="">  </span>‘XXXXXXXX’,</b></p>


<p class="MsoNormal"><b style=""><span style="">   </span><span style="">         </span>‘port’<span style="">           </span>=> '’,</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘u_field’<span style="">       </span>=><span style=""> 

</span>‘name’,</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘dbi_driver’ =><span style="">  </span>‘’,</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘p_field’<span style="">       </span>=><span style=""> 

</span>‘’,</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘p_enc_pkg’ =><span style="">  </span>‘’,</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘p_enc_sub’ =><span style="">  </span>‘’,</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘p_salt’<span style="">         </span>=><span style=""> 

</span>‘’,</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘d_field’<span style="">    </span><span style=""> </span><span style=""> </span><span style=""> </span>=><span style="">   </span>'’,</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘d_values’<span style="">    </span>=> '',</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘attr_match_list’ <span style=""> </span>=> [' EmailAddress'],</b></p>


<p class="MsoNormal"><b style=""><span style="">            </span>‘attr_map’<span style="">            </span>=><span style="">  </span>['EmailAddress' <span style="">   </span>=> 'mail']</b></p>


<p class="MsoNormal"><b style=""><span style="">           </span>}</b></p>


<p class="MsoNormal"><b style=""><span style="">      </span>}</b></p>


<p class="MsoNormal" style=""><b style=""><span style="">   </span>);</b></p>


<b style=""><span style="font-size: 12pt; font-family: "Times New Roman";">1;<br><br></span></b><span style="font-size: 12pt; font-family: "Times New Roman";">Am I on the right track?</span><b style=""><span style="font-size: 12pt; font-family: "Times New Roman";"><br>

</span></b><span style="font-size: 12pt; font-family: "Times New Roman";"><br>Kenn<br>LBNL</span><b style=""><span style="font-size: 12pt; font-family: "Times New Roman";"><br><br><br></span></b><br><div class="gmail_quote">

On Tue, Jan 11, 2011 at 7:40 AM, Kevin Falcone <span dir="ltr"><<a href="mailto:falcone@bestpractical.com">falcone@bestpractical.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">

<div class="im">On Mon, Jan 10, 2011 at 11:04:52PM -0400, Nicôle Layne-Balram wrote:<br>

> Since implementing external auth (LDAP option), RT works as expected for users within AD, but I've just realized that external users are unable to create tickets, even with the appropriate "Everybody" permissions set via the web interface (globally as well as queue-specific).<br>


<br>

</div>This comes up about twice a month on the mailing list, there is a<br>

config option documented in the RT-Authen-ExternalAuth config file to<br>

enable the creation of external users<br>

<font color="#888888"><br>

-kevin<br>

</font><div><div></div><div class="h5"><br>

> Error within logs:<br>

> *timestamp* RT RT: RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Comments: Autocreated on ticket submission, Disabled: 0, EmailAddress: <a href="mailto:yyy@hotmail.com">yyy@hotmail.com</a>, Name: <a href="mailto:yyy@hotmail.com">yyy@hotmail.com</a>, Password: , Privileged: 0, RealName: Jane Doe (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:536)<br>


> Jan 10 21:21:58 RT RT: Couldn't load user '<a href="mailto:yyy@hotmail.com">yyy@hotmail.com</a>'.giving up (/opt/rt3/bin/../lib/RT/Interface/Email.pm:947)<br>

><br>

> RT_SiteConfig.pm:<br>

> Set($rtname , "<a href="http://xxx.com" target="_blank">xxx.com</a>");<br>

> Set($Organization , "<a href="http://xxx.com" target="_blank">xxx.com</a>");<br>

> Set($Timezone , 'US/Eastern');<br>

> Set($DatabaseType , 'mysql');<br>

> Set($DatabaseHost   , 'localhost');<br>

> Set($DatabaseRTHost , 'localhost');<br>

> Set($DatabasePort , '');<br>

> Set($DatabaseUser , 'rt');<br>

> Set($DatabasePassword , 'xyz');<br>

> Set($OwnerEmail , 'root');<br>

> Set($RTAddressRegexp , '([a-z]+)\@rt\.xxx\.com$');<br>

> Set($ValidateUserEmailAddresses, 1);<br>

> Set($CorrespondAddress , '<a href="mailto:no-reply@rt.xxx.com">no-reply@rt.xxx.com</a>');<br>

> Set($CommentAddress , '<a href="mailto:no-reply-comment@rt.xxx.com">no-reply-comment@rt.xxx.com</a>');<br>

> Set( $WebDomain, '<a href="http://rt.xxx.com" target="_blank">rt.xxx.com</a>' );<br>

> Set($WebPath, "");<br>

> Set($CanonicalizeRedirectURLs, 1);<br>

> Set($LogToSyslog , 'info');<br>

> Set($UnsafeEmailCommands,1);<br>

> Set($LogToSyslog, "debug");<br>

> Set($AutoCreateNonExternalUsers, 1);<br>

> Set($AutoCreate, {Privileged => 1});<br>

> Set(@Plugins,qw(RT::FM RT::Extension::QueueDeactivatedScrips RT::Extension::MobileUI RT::Authen::ExternalAuth));<br>

> require "/opt/rt3/local/plugins/RT-Authen-ExternalAuth/etc/My_RT_SiteConfig.pm";<br>

><br>

> 1;<br>

><br>

> External User gets two returned e-mails from <a href="mailto:no-reply@rt.xxx.com">no-reply@rt.xxx.com</a>:<br>

> RT could not load a valid user, and RT's configuration does not allow for the creation of a new user for your email.<br>

> User '<a href="mailto:yyy@hotmail.com">yyy@hotmail.com</a>' could not be loaded in the mail gateway<br>

><br>

> Any help and suggestions would be greatly appreciated.<br>

><br>

> Thanks,<br>

> Nicôle<br>

</div></div></blockquote></div><br>