[rt-users] Fwd: Failed use LDAP service

Lachlan Webb lwebb at uow.edu.au
Wed Apr 22 22:10:30 EDT 2009


On 23/4/09 11:57 AM, nast linux wrote:
> Dear All,
>
> Need your help.
>
> I see in error.log is like below:
>
> [Wed Apr 22 10:10:28 2009] [critical]:
> RT::Authen::ExternalAuth::LDAP::_GetBoundLdapObj Can't bind:
> LDAP_INVALID_CREDENTIALS 49
> (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:467)
> [Wed Apr 22 10:10:28 2009] [error]: FAILED LOGIN for user test from
> test-desk (/opt/rt3/share/html/autohandler:265)
>
> What is the problem and what Should I do?
>
> Thanks,
> ns
> ---------- Forwarded message ----------
> From: nast linux<nastlinux at gmail.com>
> Date: Wed, 22 Apr 2009 13:50:08 +0700
> Subject: Failed use LDAP service
> To: rt-users<rt-users at lists.bestpractical.com>
>
> *Dear All,
>
> I failed use LDAP service, I already done steps below:
> *
> *1. Install RT-Authen-ExternalAuth*
> *2. Uncomment Set(@Plugins,(qw(RT::Authen::ExternAuth))); on
> /opt/rt3/etc/RT_SiteConfig.pm
> *
> *3. cp
> /opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth
> /opt/rt3/local/html/Callbacks/ExternalAuth/autohandler/Auth*
>
> *4. apply the following patch to
> User_Vendor<http://wiki.bestpractical.com/view/User_Vendor>.pm:
> *
>
>    
The error "

  Can't bind:
LDAP_INVALID_CREDENTIALS 49

"
Seems to be your problem. From memory, AD requires authenticated 
credentials for ldap queries.
A windows guru could help here.
In your RT_SiteConfig.pm, where you have specified
Set( $ExternalSettings, {
...
     'user'                      =>  'User goes here',
     'pass'                    =>  'Password here',
...
}

You could try using ldapsearch from the command line on the server
to check that the user can bind and do lookups, e.g.
ldapsearch -D "cn=fred, etc" -w "Password"-h ldap.example.com -b 
"ou=People, etc." cn=*
or something similar, man ldapsearch could be your friend.

Regards,
Lachlan



More information about the rt-users mailing list