<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix"><font size="-1"><font face="Calibri">A
little more info after checking rt4 logs:<br>
Oct 3 10:20:16 rtracker6 RT: [16022]
RT::Authen::ExternalAuth::CanonicalizeUserInfo returning
Disabled: , EmailAddress: , Gecos: wclarke, Name: wclarke,
Privileged:<br>
Oct 3 10:20:16 rtracker6 RT: [16022] Couldn't create user
wclarke: Could not set user info<br>
Oct 3 10:20:16 rtracker6 RT: [16022] FAILED LOGIN for wclarke
from 10.30.2.210<br>
<br>
</font></font>On 10/3/2014 11:06 AM, William Clarke wrote:<br>
</div>
<blockquote cite="mid:542EBB85.3070006@simons-rock.edu" type="cite">
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
<div class="moz-cite-prefix"><font size="-1"><font face="Calibri">Sorry,
I sent that a little prematurely..... RT shows your username
or password is incorrect : (</font></font><br>
<br>
On 10/3/2014 10:58 AM, William Clarke wrote:<br>
</div>
<blockquote cite="mid:542EB99B.9070003@simons-rock.edu"
type="cite">
<meta http-equiv="content-type" content="text/html;
charset=utf-8">
<font size="-1"><font face="Calibri">Hi all,<br>
<br>
CentOS6.5 \ Apache 2.2.15 \ Perl 5.18.2 \ MariaDB 5.5.39<br>
<br>
I followed these instructions for my RT build:<br>
<a moz-do-not-send="true" class="moz-txt-link-freetext"
href="http://binarynature.blogspot.pt/2013/05/install-request-tracker-4.html">http://binarynature.blogspot.pt/2013/05/install-request-tracker-4.html</a><br>
<br>
I'm very new to RT. I've read up what I could find on CPAN,
wiki and Google and I'm not quite sure which way to go here.
RT is connecting to our ldap and a search result is found
but the logs in ldap show "</font></font><font size="-1"><font
face="Calibri"><font size="-1"><font face="Calibri">closed
(connection lost)" so I suspect RT isn't seeing\getting
the response back from LDAP. I have some examples below
showing RT's LDAP requests with logs as well as the same
search run via command line.<br>
<br>
The main differences I can see in logs so far is command
line test sends "scope=2 deref=0" vs RT test "scope=2
deref=2" and also that the RT test doesn't unbind and
the connection is lost. <br>
<br>
</font></font>Command line: ldapsearch -x -p 389 -h
ldap.simons-rock.edu -b ou=People,dc=simons-rock,dc=edu
"(&(&(uid=*))(uid=wclarke))" mail uid<br>
<br>
# extended LDIF<br>
#<br>
# LDAPv3<br>
# base <ou=People,dc=simons-rock,dc=edu> with scope
subtree<br>
# filter: (&(&(uid=*))(uid=wclarke))<br>
# requesting: mail uid<br>
#<br>
<br>
# wclarke, People, simons-rock.edu<br>
dn: uid=wclarke,ou=People,dc=simons-rock,dc=edu<br>
uid: wclarke<br>
mail: <a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:wclarke@simons-rock.edu">wclarke@simons-rock.edu</a><br>
<br>
# search result<br>
search: 2<br>
result: 0 Success<br>
<br>
# numResponses: 2<br>
# numEntries: 1<br>
---------------------------------------------------------------------------------------------------------------<br>
Logs from ldap via command line - loglevel 256<br>
---------------------------------------------------------------------------------------------------------------<br>
Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 fd=19 ACCEPT
from IP=10.30.2.36:51249 (IP=0.0.0.0:389)<br>
Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=0 BIND
dn="" method=128<br>
Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=0 RESULT
tag=97 err=0 text=<br>
Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=1 SRCH
base="ou=People,dc=simons-rock,dc=edu" scope=2 deref=0
filter="(&(&(uid=*))(uid=wclarke))"<br>
Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=1 SRCH
attr=mail uid<br>
Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=1 SEARCH
RESULT tag=101 err=0 nentries=1 text=<br>
Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=2 UNBIND<br>
Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 fd=19 closed<br>
---------------------------------------------------------------------------------------------------------------<br>
Logs from ldap when logging into RT - loglevel 256<br>
---------------------------------------------------------------------------------------------------------------<br>
Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 fd=19 ACCEPT
from IP=10.30.2.36:51262 (IP=0.0.0.0:389)<br>
Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=0 BIND
dn="" method=128<br>
Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=0 RESULT
tag=97 err=0 text=<br>
Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=1 SRCH
base="ou=People,dc=simons-rock,dc=edu" scope=2 deref=2
filter="(&(&(uid=*))(uid=wclarke))"<br>
Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=1 SRCH
attr=uid mail<br>
Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=1 SEARCH
RESULT tag=101 err=0 nentries=1 text=<br>
Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 fd=19 closed
(connection lost)<br>
---------------------------------------------------------------------------------------------------------------<br>
External Settings from: RT_SiteConfig.pm<br>
---------------------------------------------------------------------------------------------------------------<br>
Set( $ExternalSettings, {<br>
'My_LDAP' => {<br>
'type' => 'ldap',<br>
'server' =>
'ldap2.simons-rock.edu',<br>
'base' =>
'ou=People,dc=simons-rock,dc=edu',<br>
'filter' =>
'(objectClass=*)',<br>
'net_ldap_args' => [ version
=> 3 ],<br>
<br>
'attr_match_list' => [<br>
'Name',<br>
'EmailAddress',<br>
],<br>
'attr_map' => {<br>
'Name' => 'uid',<br>
'EmailAddress' => 'mail',<br>
},<br>
},<br>
} );<br>
<br>
# You must install Plugins on your own, this is only an
example<br>
# of the correct syntax to use when activating them:<br>
# Plugin( "RT::Extension::SLA" );<br>
# Plugin( "RT::Authen::ExternalAuth" );<br>
<br>
Plugin( "RT::Authen::ExternalAuth" );<br>
# Plugin( "RT::Extension::Assets" );<br>
# plugin( "RT::Extension::Assets::Import::CSV" );<br>
1;</font></font><br>
<pre class="moz-signature" cols="72">--
William Clarke
ITS System Administrator
Bard College at Simon's Rock
84 Alford Road
Great Barrington, MA 01230
(413) 528-7428 (voice)
(413) 528-7405 (fax)
<a moz-do-not-send="true" class="moz-txt-link-abbreviated" href="mailto:wclarke@simons-rock.edu">wclarke@simons-rock.edu</a></pre>
</blockquote>
<br>
</blockquote>
<br>
</body>
</html>