[rt-users] External Authentication with LDAPS

Anthony BRODARD brodard.anthony at gmail.com
Wed Jul 28 03:23:13 EDT 2010


Hi,

I've installed RT 3.8.7 on a debian lenny with the manual procedure listed
here: http://wiki.bestpractical.com/view/ExternalAuth

So, now i try to configure my RT_Siteconfig.pm to acces at RT via my LDAPS
serveur.

This is a part of my configuration:

 #PLUGINS:
Set(@Plugins,(qw(
         RT::Extension::MandatorySubject
        RT::Extension::MandatoryRequestor
        RT::Extension::SearchResults::XLS
        RT::Extension::UserDetails
        RT::FM
        RT::IR
        RTx::Tags
        RT::Extension::WatchedQueues
        RT::Extension::ServiceUpdates
        RT::Authen::ExternalAuth
        )));
# AUTHENTICATION

Set($ExternalAuthPriority, ['LDAP',]
);

Set($ExternalInfoPriority, ['LDAP',]
);

Set($ExternalServiceUsesSSLorTLS, 1);

# DATABASES CONFIGURATION
Set($ExternalSettings,
        {
                'LDAP'       =>  {
                        'type'                  =>      'ldap',
                        'server'                =>      'ldap.BLANKED',
                        'user'                  =>      'BLANKED',
                        'pass'                  =>      'BLANKED',
                        'base'                  =>      'dc=blanked,dc=fr',
                        'filter'                =>      '(uid=*)',
                        'd_filter'              =>
 '(objectClass=foobar)',
                        'tls'                   =>      1,
                        'ssl_version'           =>      3,
                        'net_ldap_args'         =>      [ version => 3 ],
#                       'group'                 =>      'GROUP-NAME',
#                       'group_attr'            =>      'GROUP_ATTR',
                        'attr_match_list'       =>      'uid',
                        'attr_map'              =>      {
                                'Name' => 'uid',
                                'EmailAddress' => 'mail',
#                               'Organization' => '',
                                'RealName' => 'cn',
#                               'ExternalAuthId' => '',
#                               'Gecos' => '',
#                               'WorkPhone' => 'telephonenumber',
#                               'Address1' => '',
#                               'City' => '',
#                               'State' => '',
#                               'Zip' => '',
#                               'Country' => ''
                                }
                        }
        },
  );
1;

When i try to log on, i have a message which said  that m'y username or my
password isn't correct.

In the log files (/var/log/apache2/error.log), i have only :

[Tue Jul 27 14:35:28 2010] [error]: FAILED LOGIN for anthony.brodard from
MY_IP (/opt/rt3/bin/../lib/RT/Interface/Web.pm:424)


Do you know where is the mistake?

After that, i want to activate a session's timeout on RT with mod_perl. Do
you know how can i do?

Regards,
Anthony BRODARD
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20100728/fb5ec126/attachment.htm>


More information about the rt-users mailing list