<div>One thing that stands out in your config is your d_filter. I read on the RT wiki somewhere that d_filter for an AD you needed to put what I have below:</div>
<div> </div>
<div> 'd_filter' => '(userAccountControl:1.2.840.113556.1.4.803:=2)',<br></div>
<div>Read these 2 microsoft support KB to learn more on why</div>
<div> </div>
<div><a href="http://support.microsoft.com/kb/305144">http://support.microsoft.com/kb/305144</a></div>
<div> </div>
<div><a href="http://support.microsoft.com/kb/269181">http://support.microsoft.com/kb/269181</a></div>
<div> </div>
<div>Also, you have tls, ssl_version, group and group_attr commented out. Someone else can correct me, but I believe you need to define those in your settings.</div>
<div> </div>
<div>Best I can do with my limited knowledge.</div>
<div> </div>
<div>Good luck!</div>
<div>Mike.<br><br></div>
<div class="gmail_quote">On Thu, Apr 21, 2011 at 5:31 AM, john s. <span dir="ltr"><<a href="mailto:fireskyer@gmx.de">fireskyer@gmx.de</a>></span> wrote:<br>
<blockquote style="BORDER-LEFT: #ccc 1px solid; MARGIN: 0px 0px 0px 0.8ex; PADDING-LEFT: 1ex" class="gmail_quote"><br><br>Is it clear what i want? No? okay i try to describe a litte bit more exaclty<br>as far as possible from myself<br>
<br><br>okay my ldapseach command which runs perfectly is:<br><br>sudo ldapsearch -h xxx.xxx.local -D "xxx\User" -w "password" -b "'dc=xxx,<br>dc=local" -s sub "sAMAccountName=USER"<br>
<br><br><br>So here are my RT Config Parameter again:<br><br>Set($ExternalSettings,{'My_LDAP' =>{ ## GENERIC SECTION<br> 'type' => 'ldap',<br> 'server' => '192.168.123.45',<br>
'user' => 'USER',<br> 'pass' => 'password',<br> 'base' =><br>
'ou=companyou,ou=User,dc=xxx,dc=xxx,dc=local',<br> 'filter' => '(ObjectClass=*)',<br> 'd_filter' =><br>'(userAccountControl=514)'<br>
# 'tls' => 0,<br> # 'ssl_version' => 3,<br> 'net_ldap_args' => [ version => 3 ],<br>
# 'group' => 'Benutzer',<br> # 'group_attr' => 'GROUP_ATTR',<br> 'attr_match_list' => [ 'Name',<br>
# 'EmailAddress',<br> ],<br> 'attr_map' => { 'Name' =><br>
'sAMAccountName',<br> 'RealName' => 'cn',<br> 'EmailAddress' =><br>'mail',<br>
'Organization' =><br>'physicalDeliveryOfficeName',<br> 'RealName' => 'cn',<br>
'ExternalAuthId' =><br>'sAMAccountName',<br> 'Gecos' =><br>'sAMAccountName',<br>
'WorkPhone' =><br>'telephoneNumber',<br> 'Address1' =><br>'streetAddress',<br>
'City' => 'l',<br> 'State' => 'st',<br> 'Zip' =><br>
'postalCode',<br> 'Country' => 'co'<br><br><br>}<br> }<br><br><br>I'll try to find out, which parameter doesn't match with the ldap one ...<br>
cause if i try to authorize on rt with an ad user my AD gives the following<br>message out:<br>
<div class="im"><br>xxx.xxx.xxx.xxx:2799 NTDS None TCP 4 32 NonDSE Can't find<br>object 0.0 0<br><br><br></div>best regards john s.<br><font color="#888888"><br><br><br><br><br><br><br><br><br><br>--<br>
View this message in context: <a href="http://old.nabble.com/Re%3A-RT-Authen-ExternalAuth-0.08-which-packages-i-need-for-tp31388437p31448102.html" target="_blank">http://old.nabble.com/Re%3A-RT-Authen-ExternalAuth-0.08-which-packages-i-need-for-tp31388437p31448102.html</a><br>
</font>
<div>
<div></div>
<div class="h5">Sent from the Request Tracker - User mailing list archive at Nabble.com.<br><br></div></div></blockquote></div><br><br clear="all"><br>-- <br>Mike Johnson<br>Datatel Programmer/Analyst<br>Northern Ontario School of Medicine<br>
955 Oliver Road<br>Thunder Bay, ON P7B 5E1<br>Phone: (807) 766-7331<br>Email: <a href="mailto:mike.johnson@nosm.ca">mike.johnson@nosm.ca</a><br>