[rt-users] Trouble using RT::Authen::ExternalAuth with OpenLDAP on Centos 5.5
Donny Brooks
dbrooks at mdah.state.ms.us
Thu Mar 10 17:18:17 EST 2011
Hello all,
I have setup RT 3.8.9 on a Centos 5.5 machine according to the
directions located here:
http://home.roadrunner.com/~computertaijutsu/rt3.html. I was able to get
it installed as far as I can tell successfully and I am now going for
external ldap authentication. I have followed the wiki pages that I have
found on it as well as the README but do not seem to be able to get it
going correctly. When I try to login as a user with my correct username
and password I just get the incorrect user/pass page. Also, when trying
to add the user to RT via the web interface under
Configuration-Users-Create I get:
"User could not be created: Could not set user info"
and in the apache error logs I get:
[Thu Mar 10 21:44:58 2011] [info]:
RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Address1: ,
Address2: , AuthSystem: , City: , Comments: , ContactInfoSystem: ,
Country: , Disabled: 0, EmailAddress: , EmailEncoding: , ExternalAuthId:
, ExternalContactInfoId: , FreeformContactInfo: , Gecos: , HomePhone: ,
Lang: , MobilePhone: , Name: dbrooks, NickName: , Organization: ,
PagerPhone: , Privileged: , RealName: , Signature: , State: ,
WebEncoding: , WorkPhone: , Zip:
(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:536)
It appears as though the RT machine is not talking to my OpenLDAP server
properly. Below is my /opt/rt3/etc/RT_SiteConfig.pm
Set( $rtname, 'mdah.state.ms.us');
Set( @Plugins, qw(RT::Authen::ExternalAuth) );
Set($ExternalAuthPriority, [ 'My_LDAP' ] );
Set($ExternalInfoPriority, [ 'My_LDAP' ] );
Set($ExternalServiceUsesSSLorTLS, 0);
Set($AutoCreateNonExternalUsers, 0);
Set($ExternalSettings, {
'My_LDAP' => {
'type' => 'ldap',
'server' => 'ldap.mdah.state.ms.us',
'user' => 'cn=Manager,dc=mdah,dc=state,dc=ms,dc=us',
'pass' => 'ldappassword',
'base' => 'dc=mdah,dc=state,dc=ms,dc=us',
'filter' => '(objectClass=People)',
'd_filter' => '(objectClass=FooBarBaz)',
'tls' => 0,
'ssl_version' => 3,
'net_ldap_args' => [ version => 3 ],
'attr_match_list' => [ 'Name',
'EmailAddress'
],
'attr_map' => { 'Name' => 'uid',
'EmailAddress' => 'mail'
}
}
}
);
1;
Am I missing something obvious? Been at this all day and no closer to
finding the problem it appears. I do appreciate any guidance.
Donny B.
More information about the rt-users
mailing list