[rt-users] I can't authenticate via LDAP; I don't see the log messages I expect

Jason Ledford jledford at biltmore.com
Tue Mar 8 19:48:03 EST 2011


I am using rt 3.8.9, but I had to update to the dev release of external auth
http://search.cpan.org/CPAN/authors/id/F/FA/FALCONE/RT-Authen-ExternalAuth-0.08_01.tar.gz

I was getting results like you, or lack of results.  It didn't appear to even be loading the plugin.

________________________________________
From: rt-users-bounces at lists.bestpractical.com [rt-users-bounces at lists.bestpractical.com] On Behalf Of Micah R Ledbetter [mledbetter at neuric.com]
Sent: Tuesday, March 08, 2011 3:24 PM
To: rt-users at lists.bestpractical.com
Subject: [rt-users] I can't authenticate via LDAP;      I don't see the log messages I expect

Hi all,

I'm having a problem making RT::Authen::ExternalAuth work with LDAP.
Furthermore, when I go to the log to find out what's wrong, I see almost
nothing there.

I'm on Ubuntu 10.04.1, running RT 3.8.8 installed from source to /opt/rt3,
and RT::Authen::ExternalAuth 0.08 installed from CPAN via this command:
> PERL5LIB=/opt/rt3/lib cpan RT::Authen::ExternalAuth

Here is my RT_SiteConfig.pm: http://pastie.org/1648532


I can log in as root, or any other locally-created user. When I do, I get a
message to rt.log that looks like this:
> [Tue Mar  8 19:46:18 2011] [info]: Successful login for root from \
> 192.168.55.133 (/opt/rt3/bin/../lib/RT/Interface/Web.pm:430)

I cannot log in as any of my Active Directory users. When I do, or when I
send a known-bad username/password combination, I get a message to rt.log
that looks like this:
> [Tue Mar  8 19:45:55 2011] [error]: FAILED LOGIN for mledbetter from \
> 192.168.55.133 (/opt/rt3/bin/../lib/RT/Interface/Web.pm:424)

Those are the only messages that are EVER logged to the log file. I didn't
even realize that there were more things that RT would log, until I ran
across this message:
http://lists.bestpractical.com/pipermail/rt-users/2010-August/065986.html

Why can I not see those log messages? I would very much appreciate help in
this regard, because if I could just solve that problem I think I could fix
the Active Directory problem myself.

Note that when I log in as root (which works because, of course, root is a
local user, not an AD user), I can go to the System Configuration page.

There, in the "RT Configuration" section, I see this line:
> Plugins       RT::Authen::ExternalAuth        site config
And in the "Loaded perl modules" section, I see this line:
> RT::Interface::Web::Request           0.30    \
> /opt/rt3/bin/../lib/RT/Interface/Web/Request.pm


I'm not sure where to go from here, and I'd appreciate any input. I'd also
like to thank trs and jibsheet for helping me on IRC.

- Micah




More information about the rt-users mailing list