[rt-users] External Authentication with LDAPS

Anthony BRODARD brodard.anthony at gmail.com
Thu Jul 29 04:04:31 EDT 2010


Hi Mike, thanks to help me!

I've turned on RT's debug mode ( add "   Set($LogToFile, '*debug*');
Set($LogDir,
'/var/log/rt');  " in my RT_Siteconfig.pm).

Now, when I try to loggin with a LDAP account, this lines are written in my
log file:

 [Thu Jul 29 07:46:08 2010] [debug]: Reloading RT::User to work around a bug
in RT-3.8.0 and RT-3.8.1
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:14)
[Thu Jul 29 07:46:08 2010] [debug]: Attempting to use external auth service:
LDAP
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:64)
[Thu Jul 29 07:46:08 2010] [debug]: Calling UserExists with $username
(anthony.brodard) and $service (LDAP)
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:105)
[Thu Jul 29 07:46:08 2010] [debug]: UserExists params:
username: anthony.brodard , service: LDAP
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:274)
*[Thu Jul 29 07:46:30 2010] [critical]:
RT::Authen::ExternalAuth::LDAP::_GetBoundLdapObj : Cannot connect to
ldap.[Blanked].fr
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:437)
*
[Thu Jul 29 07:46:30 2010] [debug]: Autohandler called ExternalAuth.
Response: (0, No User)
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:26)
[Thu Jul 29 07:46:30 2010] [error]: FAILED LOGIN for anthony.brodard from
[IP] (/opt/rt3/bin/../lib/RT/Interface/Web.pm:424)



I try a telnet on server:

[rt-test]~ # telnet ldap.[Blanked].fr 636
Trying [IP]...
Connected to ldap.[Blanked].fr.
Escape character is '^]'.


Maybe RT use the LDAP's default port (389), not the LDAPS (636). How can i
see it or modify in RT_Siteconfig.pm ?

Regards,
Anthony





2010/7/28 Mike Johnson <mike.johnson at nosm.ca>

> Hi,
>
> Try turning on RT's logging in debug mode.  That helped me figure out what
> was going on with my ExternalAuth.  In the log, before the FAILED line you
> should see a few lines showing you if it's connecting to your LDAP, finding
> user etc.
>
> Work from there!
> Mike.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20100729/bb23a6b2/attachment.htm>


More information about the rt-users mailing list