[rt-users] RT 4.2 and AD Authentication.

Mohammed Cyclegar mcyclegar at gmail.com
Wed Mar 19 22:42:01 EDT 2014


Hello,

I have installed RT 4.2.2 on CentOS 6.5 which  is working fine without AD.

I tested Active Directory Authentication and it worked ,  but now the
authentication is failing with the following error.

in rt.log
[1165] [Thu Mar 20 01:40:14 2014] [error]: FAILED LOGIN for administrator
from 192.168.51.60 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:814)

in messages

Mar 19 21:40:14 rt RT: [1165] FAILED LOGIN for administrator from
192.168.51.60

Tried with changing log to debug but its not dumping any debug logs.

Here is my Site Config

#Logs
Set($LogToSyslog    , 'debug');
Set($LogToFile , 'debug'); #debug is very noisy
Set($LogDir, '/opt/rt4/var/log/');
Set($LogToFileNamed , "rt.log");    #log to rt.log

'My_LDAP' =>  {
                                              'type'              =>
 'ldap',
                                              'server'            =>
 '192.168.51.48',
                                              'user'              =>  '
rtuser at aaa.bbb.com',
                                              'pass'              =>
 'secret',
                                              'base'              =>
 'cn=users,DC=aaa,DC=bbb, DC=com',
                                              'filter'            =>
 '(&(ObjectCategory=User)(ObjectClass=Person))',
                                              'd_filter'          =>
 '(userAccountControl:1.2.840.113556.1.4.803:=2)',
                                              'tls'               =>  0,
                                              'ssl_version'       =>  3,
                                              'net_ldap_args'     => [
 version =>  3   ],
                                              'attr_match_list'   => [
 'Name',

'EmailAddress'
                                                                     ],
                                              'attr_map'          =>  {
'Name' => 'sAMAccountName',

'EmailAddress' => 'mail',

'Organization' => 'physicalDeliveryOfficeName',

'RealName' => 'cn',

'ExternalAuthId' => 'sAMAccountName',

'Gecos' => 'sAMAccountName',

'WorkPhone' => 'telephoneNumber',

'Address1' => 'streetAddress',

'City' => 'l',

'State' => 'st',

'Zip' => 'postalCode',

'Country' => 'co'

#AD Users/Group Import
Set($LDAPHost,'ldap://192.168.51.48');
    Set($LDAPUser,'rtuser at aaa.bbb.com');
    Set($LDAPPassword,'secret');
    Set($LDAPBase, 'DC=aaa,DC= bbb, DC=com');
    Set($LDAPFilter, '(&(objectclass=person)(!(objectclass=computer)))');
    Set($LDAPMapping, {Name         => 'uid', # required
                       EmailAddress => 'mail',
                       RealName     => 'cn',
                       WorkPhone    => 'telephoneNumber',
                       Organization => 'departmentName'});

Set($LDAPGroupBase, ' DC=aaa, DC=bbb, DC=com');
   Set($LDAPGroupFilter, '(&(objectclass=group)(!(objectclass=computer)))');
   Set($LDAPGroupMapping, {Name               => 'cn',
                          Member_Attr        => 'member',
                          Member_Attr_Value  => 'dn' });
Also i am not able to import  users where as groups were imported
successfully.

I get the following error while running import for users.

[1194] [Thu Mar 20 02:06:47 2014] [warning]: No Name or Emailaddress for
user, skipping $VAR1 = {
          'WorkPhone' => '',
          'RealName' => 'Guest',
          'Organization' => '',
          'Name' => '',
          'EmailAddress' => ''
        };
(/opt/rt4/local/plugins/RT-Extension-LDAPImport/lib/RT/Extension/LDAPImport.pm:1524)
No Name or Emailaddress for user, skipping $VAR1 = {
          'WorkPhone' => '',
          'RealName' => 'Guest',
          'Organization' => '',
          'Name' => '',
          'EmailAddress' => ''
        };
[1194] [Thu Mar 20 02:06:47 2014] [warning]: No Name or Emailaddress for
user, skipping $VAR1 = {
          'WorkPhone' => '',
          'RealName' => 'Administrator',
          'Organization' => '',
          'Name' => '',
          'EmailAddress' => ''
        };
(/opt/rt4/local/plugins/RT-Extension-LDAPImport/lib/RT/Extension/LDAPImport.pm:1524)
No Name or Emailaddress for user, skipping $VAR1 = {
          'WorkPhone' => '',
          'RealName' => 'Administrator',
          'Organization' => '',
          'Name' => '',
          'EmailAddress' => ''
        };
[1194] [Thu Mar 20 02:06:47 2014] [warning]: No Name or Emailaddress for
user, skipping $VAR1 = {
          'WorkPhone' => '',
          'RealName' => 'Recruiter1',
          'Organization' => '',
          'Name' => '',
          'EmailAddress' => ''
        };
(/opt/rt4/local/plugins/RT-Extension-LDAPImport/lib/RT/Extension/LDAPImport.pm:1524)
No Name or Emailaddress for user, skipping $VAR1 = {
          'WorkPhone' => '',
          'RealName' => 'Recruiter1',
          'Organization' => '',
          'Name' => '',
          'EmailAddress' => ''
        };

Probably my LDAP/AD mapping is not correct ,My Active Directory is on
 Windows Server 2012 .

Please help me resolve these 2 issues.

Thanks in advance.
Mohammed
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20140319/ff71de69/attachment.htm>


More information about the rt-users mailing list