[rt-users] Help - RT4.2.7 Authen::ExternalAuth via, OpenLDAP

William Clarke wclarke at simons-rock.edu
Tue Oct 7 12:39:19 EDT 2014 

Kevin,

I just reinstalled .23_01 - Double-checked that it was infact 
ExternalAuth.pm .23_01 and yes, it is still working. Here are logs from 
a successful login and thanks again:

[3696] [Tue Oct  7 16:33:47 2014] [debug]: Attempting to use external 
auth service: My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:424)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: Calling UserExists with 
$username (wclarke) and $service (My_LDAP) 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:465)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: UserExists params:
username: wclarke , service: My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:439)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: LDAP Search === Base: 
dc=simons-rock,dc=edu == Filter: (&(objectClass=*)(uid=wclarke)) == 
Attrs: uid,mail 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:469)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: Password validation required 
for service - Executing... 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:517)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: Trying external auth service: 
My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:153)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: LDAP Search === Base: 
dc=simons-rock,dc=edu == Filter: (&(uid=wclarke)(objectClass=*)) == 
Attrs: dn 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:186)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: Found LDAP DN: 
uid=wclarke,ou=People,dc=simons-rock,dc=edu 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:220)
[3696] [Tue Oct  7 16:33:47 2014] [info]: 
RT::Authen::ExternalAuth::LDAP::GetAuth External Auth OK ( My_LDAP ): 
wclarke 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:301)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: LDAP password validation 
result: 1 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:696)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: Password Validation Check 
Result:  1 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:521)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: Authentication successful. 
Now updating user information and attempting login. 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:541)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: UserExists params:
username: wclarke , service: My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:439)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: LDAP Search === Base: 
dc=simons-rock,dc=edu == Filter: (&(objectClass=*)(uid=wclarke)) == 
Attrs: uid,mail 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:469)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: UserExists params:
username: wclarke , service: My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:439)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: LDAP Search === Base: 
dc=simons-rock,dc=edu == Filter: (&(objectClass=*)(uid=wclarke)) == 
Attrs: uid,mail 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:469)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: No d_filter specified for 
this LDAP service ( My_LDAP ), so considering all users enabled 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:529)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: 
RT::Authen::ExternalAuth::CanonicalizeUserInfo called by 
RT::Authen::ExternalAuth 
/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm 
885 with: Name: wclarke 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:792)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: Attempting to get user info 
using this external service: My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:800)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: Attempting to use this 
canonicalization key: Name 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:809)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: LDAP Search === Base: 
dc=simons-rock,dc=edu == Filter: (&(objectClass=*)(uid=wclarke)) == 
Attrs: uid,mail 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:357)
[3696] [Tue Oct  7 16:33:47 2014] [info]: 
RT::Authen::ExternalAuth::CanonicalizeUserInfo returning EmailAddress: 
wclarke at simons-rock.edu, Name: wclarke, RealName: 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:868)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: UPDATED user ( wclarke ) from 
External Service 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:669)
[3696] [Tue Oct  7 16:33:47 2014] [info]: Successful login for wclarke 
from 10.30.2.210 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:581)
[3696] [Tue Oct  7 16:33:47 2014] [debug]: Autohandler called 
ExternalAuth. Response: (1, Successful login) 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:16)

William Clarke
ITS System Administrator
Bard College at Simon's Rock
84 Alford Road
Great Barrington, MA  01230
(413) 528-7428 (voice)
(413) 528-7405 (fax)
wclarke at simons-rock.edu

On 10/7/2014 12:21 PM, Kevin Falcone wrote:
> On Tue, Oct 07, 2014 at 11:46:57AM -0400, William Clarke wrote:
>> Ouch, I apologize I missed that. I was initially using .23 release but then
>> later installed the latest dev .23_01 in hopes all my problems would vanish.
>> Well just reinstalled .23 just now and the logs I'm seeing might be a little
>> more interesting to us all. Oh and it really helps when I add the following as
>> you suggested, I didn't leave that out intentionally....
>>
>> Set( $ExternalInfoPriority, ["My_LDAP"] );
>>
>> External Auth is working like a charm now.... so THANK YOU KEVIN!!!!!
> If you have cycles, would you confirm that 0.23_01 works too now that you've
> added in the InfoPriority line?
>
> It'll help us be more confident eventually releasing that as 0.24.
>
> Thanks
>
> -kevin
>
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20141007/997f2eb5/attachment.htm>

More information about the rt-users mailing list