[rt-users] I can't authenticate via LDAP; I don't see the log messages I expect

Micah R Ledbetter mledbetter at neuric.com
Wed Mar 9 19:25:27 EST 2011


YES! This worked, thank you so much!

In detail, here's what I did. 

- I removed everything that CPAN had put in /opt/rt3/local/plugins
- I downloaded the dev release of external auth
- I installed it with a simple `perl Makefile.PL; make; make install`
- I removed the example RT_SiteConfig.pm that was created in 
  /opt/rt3/local/plugins/RT-Authen-ExternalAuth/etc/

Now my logs are full of [debug] lines that pointed me in the right
direction, and now Active Directory authentication is finally working.  

Thanks again. 

Should I file a bug report somewhere with what happened? I'd be happy to if
it would be helpful for someone. 

- Micah


-----Original Message-----
From: rt-users-bounces at lists.bestpractical.com
[mailto:rt-users-bounces at lists.bestpractical.com] On Behalf Of Jason Ledford
Sent: Tuesday, March 08, 2011 18:48
To: rt-users at lists.bestpractical.com
Subject: Re: [rt-users] I can't authenticate via LDAP; I don't see the log
messages I expect

I am using rt 3.8.9, but I had to update to the dev release of external auth
http://search.cpan.org/CPAN/authors/id/F/FA/FALCONE/RT-Authen-ExternalAuth-0
.08_01.tar.gz

I was getting results like you, or lack of results.  It didn't appear to
even be loading the plugin.

________________________________________
From: rt-users-bounces at lists.bestpractical.com
[rt-users-bounces at lists.bestpractical.com] On Behalf Of Micah R Ledbetter
[mledbetter at neuric.com]
Sent: Tuesday, March 08, 2011 3:24 PM
To: rt-users at lists.bestpractical.com
Subject: [rt-users] I can't authenticate via LDAP;      I don't see the log
messages I expect

Hi all,

I'm having a problem making RT::Authen::ExternalAuth work with LDAP.
Furthermore, when I go to the log to find out what's wrong, I see almost
nothing there.

I'm on Ubuntu 10.04.1, running RT 3.8.8 installed from source to /opt/rt3,
and RT::Authen::ExternalAuth 0.08 installed from CPAN via this command:
> PERL5LIB=/opt/rt3/lib cpan RT::Authen::ExternalAuth

Here is my RT_SiteConfig.pm: http://pastie.org/1648532


I can log in as root, or any other locally-created user. When I do, I get a
message to rt.log that looks like this:
> [Tue Mar  8 19:46:18 2011] [info]: Successful login for root from \
> 192.168.55.133 (/opt/rt3/bin/../lib/RT/Interface/Web.pm:430)

I cannot log in as any of my Active Directory users. When I do, or when I
send a known-bad username/password combination, I get a message to rt.log
that looks like this:
> [Tue Mar  8 19:45:55 2011] [error]: FAILED LOGIN for mledbetter from \
> 192.168.55.133 (/opt/rt3/bin/../lib/RT/Interface/Web.pm:424)

Those are the only messages that are EVER logged to the log file. I didn't
even realize that there were more things that RT would log, until I ran
across this message:
http://lists.bestpractical.com/pipermail/rt-users/2010-August/065986.html

Why can I not see those log messages? I would very much appreciate help in
this regard, because if I could just solve that problem I think I could fix
the Active Directory problem myself.

Note that when I log in as root (which works because, of course, root is a
local user, not an AD user), I can go to the System Configuration page.

There, in the "RT Configuration" section, I see this line:
> Plugins       RT::Authen::ExternalAuth        site config
And in the "Loaded perl modules" section, I see this line:
> RT::Interface::Web::Request           0.30    \
> /opt/rt3/bin/../lib/RT/Interface/Web/Request.pm


I'm not sure where to go from here, and I'd appreciate any input. I'd also
like to thank trs and jibsheet for helping me on IRC.

- Micah





More information about the rt-users mailing list