[rt-users] Active Directory and RT
davidneudorfer
david.neudorfer at lbox.com
Fri May 24 17:59:58 EDT 2013
If I comment out group_attr then I get:
Use of uninitialized value $group_attr in concatenation (.) or string
This is my new config:
Set($ExternalSettings, {
'My_LDAP' => {
'type' => 'ldap',
'server' => 'ad.office.lbox.com',
'port' => '389',
'user' =>
'CN=thisisauser,CN=Users,DC=office,DC=lbox,DC=com',
'pass' => 'redacted',
'base' => 'DC=office,DC=lbox,DC=com',
'filter' => '(objectClass=*)',
'd_filter' =>
'(userAccountControl:1.2.840.113556.1.4.803:=2)',
'group' => 'CN=Users,DC=office,DC=lbox,DC=com',
'group_attr' => 'member',
'tls' => 0,
'ssl_version' => 3,
'net_ldap_args' => [ version => 3 ],
'attr_match_list' => [
'Name',
'EmailAddress',
'RealName',
],
'attr_map' => {
'Name' => 'sAMAccountName',
'EmailAddress' => 'mail',
'Organization' => 'physicalDeliveryOfficeName',
'RealName' => 'cn',
'ExternalAuthId' => 'sAMAccountName',
'Gecos' => 'sAMAccountName',
'WorkPhone' => 'telephoneNumber',
'Address1' => 'streetAddress',
'City' => 'l',
'State' => 'st',
'Zip' => 'postalCode',
'Country' => 'co'
},
}}
);
And the resulting error:
[Fri May 24 21:59:38 2013] [debug]: Attempting to use external auth service:
My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:186)
[Fri May 24 21:59:38 2013] [debug]: Calling UserExists with $username
(david.neudorfer) and $service (My_LDAP)
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:227)
[Fri May 24 21:59:38 2013] [debug]: UserExists params:
username: david.neudorfer , service: My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:439)
[Fri May 24 21:59:38 2013] [debug]: LDAP Search === Base:
DC=office,DC=lbox,DC=com == Filter:
(&(objectClass=*)(sAMAccountName=david.neudorfer)) == Attrs:
l,cn,st,mail,sAMAccountName,co,streetAddress,postalCode,telephoneNumber,sAMAccountName,physicalDeliveryOfficeName,sAMAccountName
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:469)
[Fri May 24 21:59:38 2013] [debug]: Password validation required for service
- Executing...
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:277)
[Fri May 24 21:59:38 2013] [debug]: Trying external auth service: My_LDAP
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:153)
[Fri May 24 21:59:38 2013] [debug]: LDAP Search === Base:
DC=office,DC=lbox,DC=com == Filter:
(&(sAMAccountName=david.neudorfer)(objectClass=*)) == Attrs: dn
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:186)
[Fri May 24 21:59:38 2013] [debug]: Found LDAP DN: CN=David
Neudorfer,OU=Lunchbox,DC=office,DC=lbox,DC=com
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:220)
[Fri May 24 21:59:38 2013] [debug]: LDAP Search === Base:
CN=Users,DC=office,DC=lbox,DC=com == Scope: base == Filter: (member=CN=David
Neudorfer,OU=Lunchbox,DC=office,DC=lbox,DC=com) == Attrs: dn
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:256)
[Fri May 24 21:59:38 2013] [debug]: LDAP group membership check returned 0
results
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:285)
[Fri May 24 21:59:38 2013] [info]: My_LDAP AUTH FAILED: david.neudorfer
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:289)
[Fri May 24 21:59:38 2013] [debug]: LDAP password validation result: 0
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:456)
[Fri May 24 21:59:38 2013] [debug]: Password Validation Check Result: 0
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:281)
[Fri May 24 21:59:38 2013] [debug]: Autohandler called ExternalAuth.
Response: (0, Password Invalid)
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:16)
[Fri May 24 21:59:38 2013] [error]: FAILED LOGIN for david.neudorfer from
10.0.4.59 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:753)
--
View this message in context: http://requesttracker.8502.n7.nabble.com/Active-Directory-and-RT-tp54021p54027.html
Sent from the Request Tracker - User mailing list archive at Nabble.com.
More information about the rt-users
mailing list