[rt-users] RT::Authen::ExternalAuth (?) issue

Roy McMorran mcmorran at mdibl.org
Wed May 6 09:59:22 EDT 2009 

Hello all,

Running RT 3.8.2 with RT::Authen::ExternalAuth 0.08.  RT was just 
upgraded (from 3.6.6) and I have added LDAP authentication (users were 
all internal before).

I'm seeing a situation where from time to time the user will be 
(apparently) logged out and returned to the login screen.  When this 
happens I see the following in the rt.log:

[Wed May  6 13:31:14 2009] [debug]: Attempting to use external auth 
service: LDAP 
(/usr/local/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:64)
[Wed May  6 13:31:14 2009] [debug]: SSO Failed and no user to test with. 
Nexting 
(/usr/local/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:92)
[Wed May  6 13:31:14 2009] [debug]: Autohandler called ExternalAuth. 
Response: (0, No User) 
(/usr/local/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:26)
[Wed May  6 13:31:16 2009] [debug]: Attempting to use external auth 
service: LDAP 
(/usr/local/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:64)
[Wed May  6 13:31:16 2009] [debug]: SSO Failed and no user to test with. 
Nexting 
(/usr/local/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:92)
[Wed May  6 13:31:16 2009] [debug]: Autohandler called ExternalAuth. 
Response: (0, No User) 
(/usr/local/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:26)

Re-authenticating as the same user always succeeds.


 From RT_SiteConfig.pm:

Set($LogToSyslog    , undef);
Set($LogToScreen    , 'error');
Set($LogToFile      , 'debug');
Set($LogDir, '/usr/local/rt3/var/log');
Set($LogToFileNamed , "rt.log");    #log to rt.log


Set(@Plugins, qw(
   RT::Authen::ExternalAuth
   RT::FM
   RT::Extension::ExtractCustomFieldValues
));

# see /usr/local/rt3/local/plugins/RT-Authen-ExternalAuth/etc:
Set( $ExternalAuthPriority, ['LDAP'] );
Set( $ExternalInfoPriority, ['LDAP'] );
Set( $ExternalServiceUsesSSLorTLS, 0 );
Set(
    $ExternalSettings,
    {
        'LDAP' => {
            'type'            => 'ldap',
            'server'          => 'ldap.xxxxx.org',
            'base'            => 'ou=people,dc=xxxxx,dc=org',
            'filter'          => '(objectClass=posixAccount)',
            'd_filter'        => '(businessCategory=Inactive)',
            'attr_match_list' => [ 'Name', 'EmailAddress' ],
            'attr_map' => {
                'Name'           => 'uid',
                'EmailAddress'   => 'mail',
                'Organization'   => 'o',
                'RealName'       => 'cn',
                'ExternalAuthId' => 'uid',
                'Gecos'          => 'cn',
                'WorkPhone'      => 'telephoneNumber',
                'Address1'       => 'streetAddress',
                'City'           => 'l',
                'State'          => 'st',
                'Zip'            => 'postalCode',
                'Country'        => 'co'
            }
        }
    }
);

1;

The LDAP server is SunOne DS 6.2, btw.

Any thoughts on what's going on here?  Thanks for your assistance.

-- 
Roy McMorran
Systems Administrator
MDI Biological Laboratory
mcmorran at mdibl.org

More information about the rt-users mailing list