[rt-users] LDAP
Mike Peachey
mike.peachey at jennic.com
Thu Apr 3 09:51:58 EDT 2008
andrew fay wrote:
> Hi,
>
> I just left that there for reference, but it is removed now.. almost there,
>
> When I log in with an active directory user now i am getting this in the
> RT.log
>
> [Thu Apr 3 13:19:43 2008] [debug]: Attempting to use external auth
> service: My_LDAP
> (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:63)
> [Thu Apr 3 13:19:48 2008] [critical]: RT::User::_GetBoundLdapObj :
> Cannot connect to albex.albyn.local
The problem ^^
> my ldap settings are :
>
> # The filter to use to match RT-Users
> 'filter' => '(FILTER_STRING)',
>
> # The filter that will only match disabled users
> 'd_filter' => '(FILTER_STRING)',
You must replace FILTER_STRING with a valid LDAP filter.
For Active Directory where you want all users to match and disabled
users in active directory should be disabled in RT:
'filter' => '(objectclass=Person)',
'd_filter' => '(userAccountControl:1.2.840.113556.1.4.803:=2)',
> # Does authentication depend on group membership? What group name?
>
> 'group' => 'GROUP_NAME',
>
> # What is the
> attribute for the group object that determines membership?
>
> 'group_attr' => 'GROUP_ATTR',
If you don't plan on using the group attributes, you should remove them
from the config altogether.
> I think our server requires a user to authenticate before performing
> LDAP searches.. where can I enter this info ?
It seems I forgot to add these to the default config as our server
allows anonymous searches.
inside the ldap config, add lines for user and pass:
'user' => 'ldap_username_for_rt',
'pass' => 'ldap_password_for_rt',
--
Kind Regards,
__________________________________________________
Mike Peachey, IT
Tel: +44 114 281 2655
Fax: +44 114 281 2951
Jennic Ltd, Furnival Street, Sheffield, S1 4QT, UK
Comp Reg No: 3191371 - Registered In England
http://www.jennic.com
__________________________________________________
More information about the rt-users
mailing list