[rt-users] External Authentication with LDAPS
Anthony BRODARD
brodard.anthony at gmail.com
Thu Jul 29 04:04:31 EDT 2010
Hi Mike, thanks to help me!
I've turned on RT's debug mode ( add " Set($LogToFile, '*debug*');
Set($LogDir,
'/var/log/rt'); " in my RT_Siteconfig.pm).
Now, when I try to loggin with a LDAP account, this lines are written in my
log file:
[Thu Jul 29 07:46:08 2010] [debug]: Reloading RT::User to work around a bug
in RT-3.8.0 and RT-3.8.1
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:14)
[Thu Jul 29 07:46:08 2010] [debug]: Attempting to use external auth service:
LDAP
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:64)
[Thu Jul 29 07:46:08 2010] [debug]: Calling UserExists with $username
(anthony.brodard) and $service (LDAP)
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:105)
[Thu Jul 29 07:46:08 2010] [debug]: UserExists params:
username: anthony.brodard , service: LDAP
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:274)
*[Thu Jul 29 07:46:30 2010] [critical]:
RT::Authen::ExternalAuth::LDAP::_GetBoundLdapObj : Cannot connect to
ldap.[Blanked].fr
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:437)
*
[Thu Jul 29 07:46:30 2010] [debug]: Autohandler called ExternalAuth.
Response: (0, No User)
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:26)
[Thu Jul 29 07:46:30 2010] [error]: FAILED LOGIN for anthony.brodard from
[IP] (/opt/rt3/bin/../lib/RT/Interface/Web.pm:424)
I try a telnet on server:
[rt-test]~ # telnet ldap.[Blanked].fr 636
Trying [IP]...
Connected to ldap.[Blanked].fr.
Escape character is '^]'.
Maybe RT use the LDAP's default port (389), not the LDAPS (636). How can i
see it or modify in RT_Siteconfig.pm ?
Regards,
Anthony
2010/7/28 Mike Johnson <mike.johnson at nosm.ca>
> Hi,
>
> Try turning on RT's logging in debug mode. That helped me figure out what
> was going on with my ExternalAuth. In the log, before the FAILED line you
> should see a few lines showing you if it's connecting to your LDAP, finding
> user etc.
>
> Work from there!
> Mike.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20100729/bb23a6b2/attachment.htm>
More information about the rt-users
mailing list