[rt-users] External Authentication with LDAPS
Mike Johnson
mike.johnson at nosm.ca
Thu Jul 29 11:11:51 EDT 2010
make sure you reply to the list, very important to share all this so others
can learn.
The only thing I could think of is your LDAP settings are incorrect
somewhere.
Some things I found when I was setting things up
1. user = the fully qualified CN of the user(ie CN=Mike
Johnson,OU=Users,OU=mycompany,OU=mydomain,OU=local
2. filter and d_filter have to have valid settings
3. Group/Group_Attr had to have settings.
I was binding to an AD, so I'm not 100% on 3 if it isn't an AD... but 1 and
2 hold true for any LDAP.
HTH
Mike.
On Thu, Jul 29, 2010 at 9:38 AM, Anthony BRODARD
<brodard.anthony at gmail.com>wrote:
> TLS argument is already sets to 1.
>
> I don't know how to see if it's the ldap's server which refuses the
> connection, or it's an other problem.
>
>
>
> 2010/7/29 Mike Johnson <mike.johnson at nosm.ca>
>
> Oops, looking at it again, i was looking at the mysql config part, not
>> ldap.
>>
>> i think the only way you can adjust what port you are connecting to
>> through LDAP is specifying if it's TLS or not(I believe TLS is 636? google
>> to confirm).
>>
>> You said you are supposed to be connecting on 636, so set the tls argument
>> in your LDAP settings to 1.
>>
>> restart apache and give it a shot.
>>
>> Good luck!
>> Mike.
>>
>> On Thu, Jul 29, 2010 at 8:48 AM, Mike Johnson <mike.johnson at nosm.ca>wrote:
>>
>>> If you read the ExternalAuth's RT_SiteConfig.pm in
>>> /RTROOT/local/plugins/RT-Authen-ExternalAuth/etc/RT_SiteConfig.pm
>>>
>>> It shows you how to set the port you are connecting on.
>>>
>>> Set that to the port your LDAP server is listening to.
>>>
>>> Good luck
>>> MIke.
>>>
>>>
>
--
Mike Johnson
Datatel Programmer/Analyst
Northern Ontario School of Medicine
955 Oliver Road
Thunder Bay, ON P7B 5E1
Phone: (807) 766-7331
Email: mike.johnson at nosm.ca
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20100729/dd0651a8/attachment.htm>
More information about the rt-users
mailing list