[rt-users] Active Directory authentication (and LDAP stuff)

Erik Spigle erik-spigle at mihlfeld.com
Mon Dec 8 12:08:05 EST 2003


I have been searching through the list archives and trying to find more details on how exactly to make RT3 authenticate against our AD on our Windows 2000 domain.  I have found some good information, such as here: http://lists.fsck.com/pipermail/rt-users/2003-July/015262.html and here: http://lists.fsck.com/pipermail/rt-users/2003-June/014988.html but I'm still not sure where to begin.  I will start with saying that I have no experience whatsoever w/LDAP (which I assume I need to use) and integrating apache with LDAP / AD.  I see some information on the lists about some apache settings to authenticate externally, as well as the RT_SiteConfig option to make sure authentication is external, but a lot of the information is jibberish to me.  Stuff like this makes no sense:

<Directory />
	AuthType Basic
	AuthName "Request Tracker"
	# sAMAccountName is the first.last style user name
	AuthLDAPURL = "ldap://my.ldap/dc=3Dmydomain,dc=3Dcom?sAMAccountName"
	# need this account and setting because Active Directory
	# does not allow anonymous binding by default
	AuthLDAPBindDN "dummy.user at mydomain.com"
	AuthLDAPBindPassword "asdfg"
	AuthLDAPAuthoritative off
	require valid-user
</Directory>

and some of the other stuff I found in that first link mentioned here.  Is there some good RT3 / Active Directory HOWTO out there?  Am I going to have to first thoroughly learn how LDAP works?  I'm tying to avoid having to manually enter in about 75+ users into RT3.  We are going to use the SelfService part of RT3 for users to fill out requests, and it would be VERY handy if we could just keep authentication in sync w/our AD.

Any help pointing me where to even being would be MUCH appreciated.  I am kindof on a time critical schedule with this and may have to just roll w/internal RT3 authenticaion anyway as I know that works and this thing is going to have to roll out soon this week.  I'll continue trying to make sense of some examples and information I see in the list archives.

Thanks!



More information about the rt-users mailing list