[rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for Authentification ?

Kevin Falcone falcone at bestpractical.com
Thu Apr 7 13:22:52 EDT 2011


On Thu, Apr 07, 2011 at 06:58:04AM -0700, john s. wrote:
> 
> I try to integrate  ExternalAuth-0.08 Modul in RT.

You don't say your RT version, or what fails, it is possible you need
.08_01 if you're running RT 3.8.9

> But i don't know exactly which system packages i need for it..   for only an
> Authentifiaction with RT no
> Samba or other stuff  
> 
> My System is : Ubuntu 10.04
> 
> here is my Ldap Config:
> 
> # AN EXAMPLE LDAP SERVICE
>                        
> Set($ExternalAuthPriority,           [ 'My_LDAP' ] );
>    Set($ExternalInfoPriority,           [ 'My_LDAP' ] );
>    Set($ExternalServiceUsesSSLorTLS,    0);
>    Set($AutoCreateNonExternalUsers,     0);
> 
> 
> 
> 
> 
>                                         'My_LDAP'       =>  {   ## GENERIC
> SECTION
>                                                         # The type of
> service (db/ldap/cookie)
>                                                         'type'                     
> =>  'ldap',
>                                                         # The server hosting
> the service
>                                                         'server'                   
> =>  '192.168.123.41',
>                                                         ## SERVICE-SPECIFIC
> SECTION
>                                                         # If you can bind to
> your LDAP server anonymously you should
>                                                         # remove the user
> and pass config lines, otherwise specify them here:
>                                                         #
>                                                         # The username RT
> should use to connect to the LDAP server
>                                                         'user'                     
> =>  'USER',
>                                                         # The password RT
> should use to connect to the LDAP server
>                                                         'pass'                   
> =>  'password',
>                                                         #
>                                                         # The LDAP search
> base
>                                                         'base'                     
> =>  'ou=Benutzer,ou=SBAOU,dc=sbah,dc=local',
>                                                         #
>                                                         # ALL FILTERS MUST
> BE VALID LDAP FILTERS ENCASED IN PARENTHESES!
>                                                         # YOU **MUST**
> SPECIFY A filter AND A d_filter!!
>                                                         #
>                                                         # The filter to use
> to match RT-Users
>                                                         'filter'                   
> =>  '(objectClass=User)',
>                                                         # A catch-all
> example filter: '(objectClass=*)'
>                                                         #
>                                                         # The filter that
> will only match disabled users
>                                                         'd_filter'                 
> =>  '(objectClass=FooBarBaz)',
>                                                         # A catch-none
> example d_filter: '(objectClass=FooBarBaz)'
>                                                         #
>                                                         # Should we try to
> use TLS to encrypt connections?
>                                                         'tls'                      
> =>  0,
>                                                         # SSL Version to
> provide to Net::SSLeay *if* using SSL
>                                                         'ssl_version'              
> =>  3,
>                                                         # What other args
> should I pass to Net::LDAP->new($host, at args)?
>                                                         'net_ldap_args'            
> => [    version =>  3   ],
>                                                         # Does
> authentication depend on group membership? What group name?
>                                                         'group'                    
> =>  'GROUP_NAME',
>                                                         # What is the
> attribute for the group object that determines membership?
>                                                         'group_attr'               
> =>  'GROUP_ATTR',
>                                                         ## RT ATTRIBUTE
> MATCHING SECTION
>                                                         # The list of RT
> attributes that uniquely identify a user
>                                                         # This example shows
> what you *can* specify.. I recommend reducing this
>                                                         # to just the Name
> and EmailAddress to save encountering problems later.
>                                                         'attr_match_list'          
> => [    'Name',
>                                                                                            
> 'EmailAddress',
>                                                                                            
>                                                                                        
> ],
>                                                         # The mapping of RT
> attributes on to LDAP attributes
>                                                         'attr_map'                 
> =>  {   'Name' => 'sAMAccountName',
>                                                                                            
> 'EmailAddress' => 'mail',
>                                                                                            
> 'Organization' => 'physicalDeliveryOfficeName',
>                                                                                            
> 'RealName' => 'cn',
>                                                                                            
> 'ExternalAuthId' => 'sAMAccountName',
>                                                                                            
> 'Gecos' => 'sAMAccountName',
>                                                                                            
> 'WorkPhone' => 'telephoneNumber',
>                                                                                            
> 'Address1' => 'streetAddress',
>                                                                                            
> 'City' => 'l',
>                                                                                            
> 'State' => 'st',
>                                                                                            
> 'Zip' => 'postalCode',
>                                                                                            
> 'Country' => 'co'
>                                                                                        
> }
>                                                     },
> 
> 
> 
> 
> 
> 
> may sb could help me...   it will be great ....
> 
> best regards john 
> -- 
> View this message in context: http://old.nabble.com/RT-Authen-ExternalAuth-0.08-which-packages-i-need-for-Authentification---tp31342791p31342791.html
> Sent from the Request Tracker - User mailing list archive at Nabble.com.
> 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20110407/a8d84be1/attachment.sig>


More information about the rt-users mailing list