[rt-users] Trouble using RT::Authen::ExternalAuth with OpenLDAP on Centos 5.5

Donny Brooks dbrooks at mdah.state.ms.us
Thu Mar 10 17:18:17 EST 2011


Hello all,

      I have setup RT 3.8.9 on a Centos 5.5 machine according to the 
directions located here: 
http://home.roadrunner.com/~computertaijutsu/rt3.html. I was able to get 
it installed as far as I can tell successfully and I am now going for 
external ldap authentication. I have followed the wiki pages that I have 
found on it as well as the README but do not seem to be able to get it 
going correctly. When I try to login as a user with my correct username 
and password I just get the incorrect user/pass page. Also, when trying 
to add the user to RT via the web interface under 
Configuration-Users-Create I get:

"User could not be created: Could not set user info"

and in the apache error logs I get:

[Thu Mar 10 21:44:58 2011] [info]: 
RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Address1: , 
Address2: , AuthSystem: , City: , Comments: , ContactInfoSystem: , 
Country: , Disabled: 0, EmailAddress: , EmailEncoding: , ExternalAuthId: 
, ExternalContactInfoId: , FreeformContactInfo: , Gecos: , HomePhone: , 
Lang: , MobilePhone: , Name: dbrooks, NickName: , Organization: , 
PagerPhone: , Privileged: , RealName: , Signature: , State: , 
WebEncoding: , WorkPhone: , Zip:  
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:536)

It appears as though the RT machine is not talking to my OpenLDAP server 
properly. Below is my /opt/rt3/etc/RT_SiteConfig.pm

Set( $rtname, 'mdah.state.ms.us');
Set( @Plugins, qw(RT::Authen::ExternalAuth) );
Set($ExternalAuthPriority,  [ 'My_LDAP' ] );
Set($ExternalInfoPriority,  [ 'My_LDAP' ] );
Set($ExternalServiceUsesSSLorTLS,    0);
Set($AutoCreateNonExternalUsers,     0);

Set($ExternalSettings,      {
                                 'My_LDAP'       =>  {
                                                         
'type'                      =>  'ldap',
                                                         
'server'                    =>  'ldap.mdah.state.ms.us',
                                                         
'user'                      =>  'cn=Manager,dc=mdah,dc=state,dc=ms,dc=us',
                                                         
'pass'                    =>  'ldappassword',
                                                         
'base'                      =>  'dc=mdah,dc=state,dc=ms,dc=us',
                                                         
'filter'                    =>  '(objectClass=People)',
                                                         
'd_filter'                  =>  '(objectClass=FooBarBaz)',
                                                         
'tls'                       =>  0,
                                                         
'ssl_version'               =>  3,
                                                         
'net_ldap_args'             => [    version =>  3   ],
                                                         
'attr_match_list'           => [    'Name',
                                                                                             'EmailAddress'
                                                                                         ],
                                                          
'attr_map'                  =>  {   'Name' => 'uid',
                                                                                             'EmailAddress' => 'mail'
                                                                                         }
                                                         }
                         }
);
1;


Am I missing something obvious? Been at this all day and no closer to 
finding the problem it appears. I do appreciate any guidance.

Donny B.



More information about the rt-users mailing list