[rt-users] RT-Authen-ExternalAuth-0.05

Jason Doran Jason.Doran at nuim.ie
Fri Oct 17 06:52:11 EDT 2008 

Hi,
I am using RT-Authen-ExternalAuth-0.05 and all is generally good.
Our users are in OpenLDAP which looks something like the following.

dc=ourdomain,dc=ie
	ou=Users
	ou=Students
		ou=50
			uid=501......
			uid=502...
		ou=51
			uid=511......
			uid=512...

All staff emails auto-create an account when email is first sent to RT  
or when they logon
to self-service. External gmail type accounts are OK as well. However,  
our student
accounts generate the below errors. All student account uids are  
basically their 8 digit
student number and emails are of form JOE.BLOGGS.2009 at ourdomain.ie.

I have given 'Everyone' permissions on the relevant queue.

Does anyone have any ideas as to why one group of users work but not  
others. Obvious
differences between accounts are that uids for students are all  
numeric, and their LDAP
branch is organised a little differently, but when an email is sent it  
finds the relevant attrs.
from OpenLDAP.

When I logon using my credentials, in LDAP log I see a SRCH and then a  
BIND. But nothing
appears when trying a student account self-service login.

[root at xxxxx ~]# tail -f /var/log/ldap.log|grep "jbloggs"
Oct 17 11:23:14 xxx slapd[29302]: conn=2505948 op=2 SRCH  
base="dc=ourdomain,dc=ie" scope=2 deref=2  
filter="(&(objectClass=posixAccount)(uid=jbloggs))"
Oct 17 11:23:15 xxx slapd[29302]: conn=2505950 op=3 BIND  
dn="uid=jbloggs,ou=Users,dc=ourdomain,dc=ie" method=128

Regards,
Jason

Error when email sent
------------------------------

Oct 17 10:58:08 rtsandbox RT: RT::User::LookupExternalUserInfo :  
Returning:  EmailAddress: , Name: , RealName:  (/opt/rt3/bin/../local/ 
lib/RT/User_Vendor.pm:703)
Oct 17 10:58:08 rtsandbox RT: RT::User::LookupExternalUserInfo :  
Returning:  EmailAddress: JOE.BLOGGS.2009 at ourdomain.ie,  
ExternalAuthId: 98765432, Name: 98765432, Organization: NUIM,  
RealName: JOE BLOGGS(/opt/rt3/bin/../local/lib/RT/User_Vendor.pm:703)
Oct 17 10:58:08 rtsandbox RT: RT::User::CanonicalizeUserInfo returning  
Comments: Autocreated on ticket submission, Disabled: 0, EmailAddress: JOE.BLOGGS.2009 at ourdomain.ie 
, ExternalAuthId: 98765432, Name: 98765432, Organization: NUIM,  
Password: , Privileged: 0, RealName: JOE BLOGGS(/opt/rt3/bin/../local/ 
lib/RT/User_Vendor.pm:444)
Oct 17 10:58:08 rtsandbox RT: Could not create a new user - Comments- 
Autocreated on ticket submission-RealName-JOE BLOGGS-EmailAddress-JOE.BLOGGS.2009 at ourdomain.ie-Password- 
*NO-PASSWORD*-Name-98765432-Organization-NUIM-ExternalAuthId-98765432  
(/opt/rt3/bin/../lib/RT/User_Overlay.pm:201)
Oct 17 10:58:08 rtsandbox RT: User creation failed in mailgateway:  
Could not create user (/opt/rt3/bin/../lib/RT/Interface/Email.pm:244)
Oct 17 10:58:09 rtsandbox RT: Couldn't load user 'JOE.BLOGGS.2009 at ourdomain.ie 
'.giving up (/opt/rt3/bin/../lib/RT/Interface/Email.pm:806)
Oct 17 10:58:09 rtsandbox RT: User  'JOE.BLOGGS.2009 at ourdomain.ie'  
could not be loaded in the mail gateway (/opt/rt3/bin/../lib/RT/ 
Interface/Email.pm:244)
Oct 17 10:58:09 rtsandbox RT: RT could not load a valid user, and RT's  
configuration does not allow for the creation of a new user for this  
email (JOE.BLOGGS.2009 at ourdomain.ie).  You might need to grant  
'Everyone' the right 'CreateTicket' for the queue support_pre. (/opt/ 
rt3/bin/../lib/RT/Interface/Email.pm:244)
Oct 17 10:58:09 rtsandbox RT: RT could not load a valid user, and RT's  
configuration does not allow for the creation of a new user for your  
email. (/opt/rt3/bin/../lib/RT/Interface/Email.pm:244)
Oct 17 10:58:09 rtsandbox RT: Could not record email: Could not load a  
valid user (/opt/rt3/share/html/REST/1.0/NoAuth/mail-gateway:75)


Error on Logon to Self Service
------------------------------

Oct 17 11:05:12 rtsandbox RT: Couldn't get principal for not loaded  
object (/opt/rt3/bin/../lib/RT/User_Overlay.pm:1113)
Oct 17 11:05:13 rtsandbox RT: Use of uninitialized value in join or  
string at /usr/lib/perl5/site_perl/5.8.8/Log/Dispatch.pm line 22,  
<DATA> line 514. (/opt/rt3/bin/../local/lib/RT/User_Vendor.pm:208)
Oct 17 11:05:13 rtsandbox RT: My_LDAP AUTH FAILED:  User not found or  
more than one user found (/opt/rt3/bin/../local/lib/RT/User_Vendor.pm: 
208)
Oct 17 11:05:13 rtsandbox RT: Use of uninitialized value in join or  
string at /usr/lib/perl5/site_perl/5.8.8/Log/Dispatch.pm line 22,  
<DATA> line 514. (/opt/rt3/bin/../local/lib/RT/User_Vendor.pm:294)
Oct 17 11:05:13 rtsandbox RT: RT::User::IsExternalPassword External  
Auth Failed:  (/opt/rt3/bin/../local/lib/RT/User_Vendor.pm:294)
Oct 17 11:05:13 rtsandbox RT: Use of uninitialized value in join or  
string at /usr/lib/perl5/site_perl/5.8.8/Log/Dispatch.pm line 22,  
<DATA> line 514. (/opt/rt3/bin/../local/lib/RT/User_Vendor.pm:305)
Oct 17 11:05:13 rtsandbox RT: RT::User::IsInternalPassword AUTH FAILED  
(no passwd):  (/opt/rt3/bin/../local/lib/RT/User_Vendor.pm:305)
Oct 17 11:05:13 rtsandbox RT: FAILED LOGIN for 98765432 from  
149.xx.xx.xx (/opt/rt3/share/html/autohandler:265)

More information about the rt-users mailing list