[rt-users] RT::Authen::ExternalAuth, Possible Configuration Issue?

Eli Guzman eguzman at cvimellesgriot.com
Wed Apr 13 13:26:38 EDT 2011 

----Original Message----
From: rt-users-bounces at lists.bestpractical.com
[mailto:rt-users-bounces at lists.bestpractical.com] On Behalf Of Kevin
Falcone Sent: Wednesday, April 13, 2011 7:50 AM To:
rt-users at lists.bestpractical.com Subject: Re: [rt-users]
RT::Authen::ExternalAuth, Possible Configuration Issue? 

> On Mon, Apr 11, 2011 at 11:22:19AM -0600, Eli Guzman wrote:
>> 
>> I think I see where you are going, maybe the permissions under the:
>> 
>>  _/autohandler,
>> _/Elements/Header
>> 
>> directories could be incorrect?
> 
> This is unlikely to be a problem, or nothing would run, but you
> should check it anyway. 
> 
> On Mon, Apr 11, 2011 at 09:59:54AM -0400, Kevin Falcone wrote:
>>> [Fri Apr  8 23:34:13 2011] [debug]: Attempting to use external auth
>>> service: My_LDAP
>>> (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/Externa
>>> lAut h.pm:64)
>>> [Fri Apr  8 23:34:13 2011] [debug]: SSO Failed and no user to test
>>> with. NextingHey Thomas (and Kevin)


> 
> You are basically at the point where you need to start enhancing this
> debugging line to include more about what was captured from the form
> so you can figure out why the username isn't available.  
> 
> -kevin

Thanks Kevin, adjusting the permissions to the file may have worked as
we are now able to authenticate via LDAP (there is no automatic log-on,
the users just need to enter their credentials, however it is pulling
user information via the module properly). 

Oddly enough even though the Auth piece is working, when a user within
the RTUsers group (via AD) accesses the RT main login page, on the
'rt.log' I still get the same error:

[Tue Apr 12 23:37:15 2011] [debug]: SSO Failed and no user to test with.
Nexting
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAut
h.pm:92)

But as I stated, at least now I can actually authenticate, so my
question is could this then just be related to a misconfigured
RT_SiteConfig.pm file? I did make some changes to the file as well, and
this change could have had an effect as well, since previous to the
change, authentication was not taking place (besides just adjusting the
permissions of the files). 

Here is my RT_SiteConfig (for the Auth plug-in) as well, perhaps
something listed in this file is incorrect:

http://pastebin.com/zEF44vHr

I'll go ahead and enhance the debug line a bit more, and once I have
that information I will post it.

Thanks,
Eli

More information about the rt-users mailing list