Re: [rt-users] Create a scrip in RT 4
I installed the module you listed below according to the instructions on the cpan page. I'm getting this error on my browser now... mkdir /opt/rt4/var/mason_data/obj/3540243414: Permission denied at /usr/local/share/perl5/HTML/Mason/Compiler/ToObject.pm line 107 Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Thursday, March 22, 2012 4:43 PM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] Create a scrip in RT 4 On Thu, Mar 22, 2012 at 08:58:57PM +, Howell, Van wrote: I am very new to RT, We are running on RT 4.0.5 I have OpenNMS setup to notify RT using the RT notification module in OpenNMS. It is working great. All of my OpenNMS notifications are created in a single queue called NMS. I want to be able to redirect those tickets to different queues based on the subject line. I have no Idea what I am doing. Could someone help me with some sample code and how to implement it in RT4? Say for instance I receive a ticket from OpenNMS with the subject line that contains the words Paper Jam I want this to go to my queue called Printer/Copier/Scannner I'd probably use http://search.cpan.org/~falcone/RT-Action-MoveQueueBySubject-0.01/ -kevin
Re: [rt-users] Create a scrip in RT 4
Never mind, I checked the owner, obj was set to root. I changed it to apache and it works. Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Howell, Van Sent: Friday, March 23, 2012 9:03 AM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] Create a scrip in RT 4 I installed the module you listed below according to the instructions on the cpan page. I'm getting this error on my browser now... mkdir /opt/rt4/var/mason_data/obj/3540243414: Permission denied at /usr/local/share/perl5/HTML/Mason/Compiler/ToObject.pm line 107 Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Thursday, March 22, 2012 4:43 PM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] Create a scrip in RT 4 On Thu, Mar 22, 2012 at 08:58:57PM +, Howell, Van wrote: I am very new to RT, We are running on RT 4.0.5 I have OpenNMS setup to notify RT using the RT notification module in OpenNMS. It is working great. All of my OpenNMS notifications are created in a single queue called NMS. I want to be able to redirect those tickets to different queues based on the subject line. I have no Idea what I am doing. Could someone help me with some sample code and how to implement it in RT4? Say for instance I receive a ticket from OpenNMS with the subject line that contains the words Paper Jam I want this to go to my queue called Printer/Copier/Scannner I'd probably use http://search.cpan.org/~falcone/RT-Action-MoveQueueBySubject-0.01/ -kevin
Re: [rt-users] Create a scrip in RT 4
Let me see if I understand how this custom action works. Do I edit the file /opt/rt4/local/plugins/RT-Action-MoveQueue By Subjec/Lib/RT/Action/MoveQueueBySubject.pm Changing ... Set(@MoveQueueBySubjectConditions, '^begin', 'Start', 'end$', 'Finale', ); To look for the string I want, like... Set(@MoveQueueBySubjectConditions, gr /Paper Jam/i); I set the variable $queue to the queue I want it to go to? My $queue = 'Printer/Copier/Scanner' Or the queue number... My $queue = 6 Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Thursday, March 22, 2012 4:43 PM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] Create a scrip in RT 4 On Thu, Mar 22, 2012 at 08:58:57PM +, Howell, Van wrote: I am very new to RT, We are running on RT 4.0.5 I have OpenNMS setup to notify RT using the RT notification module in OpenNMS. It is working great. All of my OpenNMS notifications are created in a single queue called NMS. I want to be able to redirect those tickets to different queues based on the subject line. I have no Idea what I am doing. Could someone help me with some sample code and how to implement it in RT4? Say for instance I receive a ticket from OpenNMS with the subject line that contains the words Paper Jam I want this to go to my queue called Printer/Copier/Scannner I'd probably use http://search.cpan.org/~falcone/RT-Action-MoveQueueBySubject-0.01/ -kevin
Re: [rt-users] Create a scrip in RT 4
Where do I put this statement Set( @MoveQueueBySubjectConditions, 'Paper Jam' = 'Printer/Copier/Scanner' ); Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Friday, March 23, 2012 10:33 AM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] Create a scrip in RT 4 On Fri, Mar 23, 2012 at 03:01:20PM +, Howell, Van wrote: Let me see if I understand how this custom action works. Do I edit the file /opt/rt4/local/plugins/RT-Action-MoveQueue By Subjec/Lib/RT/Action/MoveQueueBySubject.pm No, do not edit that file. Changing ... Set(@MoveQueueBySubjectConditions, '^begin', 'Start', 'end$', 'Finale', ); This is from the documentation, so changing it would never affect anything anyway. Also from the documentation: It is a list of regular expressions and queues. So looking back up at the example you quote, if the subject starts with begin, put this in the Start queue, if the subject ends with end, put it in the Finale queue. To look for the string I want, like... Set(@MoveQueueBySubjectConditions, gr /Paper Jam/i); I set the variable $queue to the queue I want it to go to? My $queue = 'Printer/Copier/Scanner' Or the queue number... My $queue = 6 A few things. The operator is qr// not gr//, but you don't use qr here, you just use a string, like the docs show. You put a simple regular expression in there and then put the queue name next. If it makes it easier for you to read, you can even write: Set( @MoveQueueBySubjectConditions, 'Paper Jam' = 'Printer/Copier/Scanner' ); If you need to be case insensitive, see the note in the docs about how to do that. -kevin
Re: [rt-users] Create a scrip in RT 4
I think I figured it out. The statement goes in the RT_SiteConfig file. I'm a bit brain-dead today. Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Howell, Van Sent: Friday, March 23, 2012 11:00 AM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] Create a scrip in RT 4 Where do I put this statement Set( @MoveQueueBySubjectConditions, 'Paper Jam' = 'Printer/Copier/Scanner' ); Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Friday, March 23, 2012 10:33 AM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] Create a scrip in RT 4 On Fri, Mar 23, 2012 at 03:01:20PM +, Howell, Van wrote: Let me see if I understand how this custom action works. Do I edit the file /opt/rt4/local/plugins/RT-Action-MoveQueue By Subjec/Lib/RT/Action/MoveQueueBySubject.pm No, do not edit that file. Changing ... Set(@MoveQueueBySubjectConditions, '^begin', 'Start', 'end$', 'Finale', ); This is from the documentation, so changing it would never affect anything anyway. Also from the documentation: It is a list of regular expressions and queues. So looking back up at the example you quote, if the subject starts with begin, put this in the Start queue, if the subject ends with end, put it in the Finale queue. To look for the string I want, like... Set(@MoveQueueBySubjectConditions, gr /Paper Jam/i); I set the variable $queue to the queue I want it to go to? My $queue = 'Printer/Copier/Scanner' Or the queue number... My $queue = 6 A few things. The operator is qr// not gr//, but you don't use qr here, you just use a string, like the docs show. You put a simple regular expression in there and then put the queue name next. If it makes it easier for you to read, you can even write: Set( @MoveQueueBySubjectConditions, 'Paper Jam' = 'Printer/Copier/Scanner' ); If you need to be case insensitive, see the note in the docs about how to do that. -kevin
[rt-users] Create a scrip in RT 4
I am very new to RT, We are running on RT 4.0.5 I have OpenNMS setup to notify RT using the RT notification module in OpenNMS. It is working great. All of my OpenNMS notifications are created in a single queue called NMS. I want to be able to redirect those tickets to different queues based on the subject line. I have no Idea what I am doing. Could someone help me with some sample code and how to implement it in RT4? Say for instance I receive a ticket from OpenNMS with the subject line that contains the words Paper Jam I want this to go to my queue called Printer/Copier/Scannner How would I set this up in RT 4 Here is an example of a ticket that came from OpenNMS. Content-Type: text/plain Content-Disposition: inline Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.502 (Entity 5.502) From: open...@lcu.edu Subject: Paper Jam Content-Length: 56 There is Paper jamed in the copier/printer: Copy Rm 6030 Van Howell System Administrator Lubbock Christian University
Re: [rt-users] SelfService and ticket submission via Mail
I can do that, but another problem occurred to me. From time to time Students and sometimes Faculty and Staff use email addresses not assigned by the University. Will RT setup another account or just ignore the message? Can I setup a response that will tell them to use their University account? Van Howell System Administrator Lubbock Christian University Sent from my iPad On Feb 16, 2012, at 8:31 PM, Kevin Falcone falc...@bestpractical.com wrote: On Thu, Feb 16, 2012 at 05:08:27PM -0800, Kenneth Crocker wrote: I would recommend making them all privileged so you cab put them in groups (like staff, students, etc.) with similar access needs. Kenn - this ignores one of the most useful features of RT for non-technical users - the SelfService interface where all they see are their tickets in a greatly simplified interface. Van - I assume you mean your LDAP RTUsers group? You'll either need to remove the RTUsers group restriction on RT-Authen-ExternalAuth or add users to it. -kevin On Thu, Feb 16, 2012 at 3:23 PM, Howell, Van [1]van.how...@lcu.edu wrote: I am using LDAP authentication. I have about 2000 users in Faculty, Staff, Student and Distance Ed groups. I want them to be able to submit tickets via email and check progress using self service. Do they each have to be a member of my RTUsers group to do this? ATT1 RT Training Sessions (http://bestpractical.com/services/training.html) * Boston � March 5 6, 2012 RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
Re: [rt-users] LDAP Import groups question
Good catch. That worked. Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Thomas Sibley Sent: Thursday, February 16, 2012 5:08 PM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] LDAP Import groups question On 02/16/2012 05:45 PM, Howell, Van wrote: [Thu Feb 16 22:39:24 2012] [debug]: Processing group membership for Students (/opt/rt4/local/plugins/RT-Extension-LDAPImport/lib/RT/Extension/LDAPI mport.pm:855) [Thu Feb 16 22:39:24 2012] [warning]: No members found for Students in Member_Attr (/opt/rt4/local/plugins/RT-Extension-LDAPImport/lib/RT/Extension/LDAPI mport.pm:874) No members found for Students in Member_Attr [snip] Set($LDAPGroupMapping, {Name = 'cn', Member_attr = 'member'}); It's Member_Attr not Member_attr. Thomas RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012 RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
[rt-users] SelfService and ticket submission via Mail
I am using LDAP authentication. I have about 2000 users in Faculty, Staff, Student and Distance Ed groups. I want them to be able to submit tickets via email and check progress using self service. Do they each have to be a member of my RTUsers group to do this? Van Howell System Administrator Lubbock Christian University RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
Re: [rt-users] configuration help
The OPENNMS/RT module works very well, but I would like to direct events from different provisioning groups to different queues. Like my SQL servers events need to go into my SQLServer Queue that my DBA watches. Do you know if that is possible? Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Monday, February 13, 2012 12:40 PM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] configuration help On Mon, Feb 13, 2012 at 06:30:26PM +, Howell, Van wrote: I am working to configure a new ticketing system. I have RT setup to pick up mail via FetchMail. I am also running OpenNMS. From time to Time OpenNMS send an email for a problem. It has a notice number. This problem is recorded in RT as a ticket like this... Notice #486: HTTP down on library.lcu.edu (10.1.0.14) on node library.lcu.edu. When the service us brought back up OpenNMS sends a second mail reporting the problem as resolved like this... RESOLVED: Notice #486: HTTP down on library.lcu.edu (10.1.0.14) on node library.lcu.edu. The Notice # stays the same in OpenNMS. Is there a way to read this key and have RT enter this additional email from OpenNMS as a resolution to the first ticket? I am new to both OpenNMS and RT but I think I can set OpenNMS to send the resolution to a different mail address like [1]opennms-comm...@mydomain.edu and then have RT check that box for resolutions. But how do I apply it to a specific RT ticket? You can use the same kind of code we're doing in RT-Extension-Nagios, but I know that OpenNMS offers an RT connector that you may want to use instead of email. It can raise an RT ticket and then resolve it when the alert is over. You'll need to look at their site for information though, it's something they built to interact with us. -kevin RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
[rt-users] configuration help
I am working to configure a new ticketing system. I have RT setup to pick up mail via FetchMail. I am also running OpenNMS. From time to Time OpenNMS send an email for a problem. It has a notice number. This problem is recorded in RT as a ticket like this... Notice #486: HTTP down on library.lcu.edu (10.1.0.14) on node library.lcu.edu. When the service us brought back up OpenNMS sends a second mail reporting the problem as resolved like this... RESOLVED: Notice #486: HTTP down on library.lcu.edu (10.1.0.14) on node library.lcu.edu. The Notice # stays the same in OpenNMS. Is there a way to read this key and have RT enter this additional email from OpenNMS as a resolution to the first ticket? I am new to both OpenNMS and RT but I think I can set OpenNMS to send the resolution to a different mail address like opennms-comm...@mydomain.edumailto:opennms-comm...@mydomain.edu and then have RT check that box for resolutions. But how do I apply it to a specific RT ticket? Van Howell System Administrator Lubbock Christian University RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
Re: [rt-users] configuration help
Got it configured, It works well. Thanks for your help. Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Monday, February 13, 2012 12:40 PM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] configuration help On Mon, Feb 13, 2012 at 06:30:26PM +, Howell, Van wrote: I am working to configure a new ticketing system. I have RT setup to pick up mail via FetchMail. I am also running OpenNMS. From time to Time OpenNMS send an email for a problem. It has a notice number. This problem is recorded in RT as a ticket like this... Notice #486: HTTP down on library.lcu.edu (10.1.0.14) on node library.lcu.edu. When the service us brought back up OpenNMS sends a second mail reporting the problem as resolved like this... RESOLVED: Notice #486: HTTP down on library.lcu.edu (10.1.0.14) on node library.lcu.edu. The Notice # stays the same in OpenNMS. Is there a way to read this key and have RT enter this additional email from OpenNMS as a resolution to the first ticket? I am new to both OpenNMS and RT but I think I can set OpenNMS to send the resolution to a different mail address like [1]opennms-comm...@mydomain.edu and then have RT check that box for resolutions. But how do I apply it to a specific RT ticket? You can use the same kind of code we're doing in RT-Extension-Nagios, but I know that OpenNMS offers an RT connector that you may want to use instead of email. It can raise an RT ticket and then resolve it when the alert is over. You'll need to look at their site for information though, it's something they built to interact with us. -kevin RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
Re: [rt-users] Email integration
I'm not an expert in RT, just getting started. Our mail is hosted at Micro$oft (Live@edu) I setup an account in our mail system that people send tickets to. Then I use fetchmail on my RT server to retrieve it from that account. I have a cron job that gets it every 5 min. It works for me. It is documented on the WIKI site. Van Howell System Administrator Lubbock Christian University From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Chris Robison Sent: Thursday, February 09, 2012 10:42 AM To: rt-users@lists.bestpractical.com Subject: [rt-users] Email integration I know that RT has the ability to receive email and append those messages to tickets. But, from the documentation, it looks like mail has to be going straight into sendmail, which then a command line tool accesses to read in messages. Our email is hosted elsewhere and I'd really like to just use POP or IMAP. Is there a way to have this tool check external mail systems via POP or IMAP? Chris RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
[rt-users] LDAPImport
I have installed and configured RT::Extension::LDAPImport and have run a successful test I have several distribution groups setup in AD and I would like to import users and place them in the same groups in RT. Like I have AD groups Faculty, Staff, Students, etc I want to import these users into a Faculty, Staff, Students group in RT. In my test I used a filter ((memberOf=CN=Technology,CN=Departments_Groups,CN=Users,DC=x,DC=xxx,DC=edu)) And I setup a LDAPGroupName, 'Technology' Is there a way to do this for multiple different groups in the same config? Van Howell System Administrator Lubbock Christian University RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
Re: [rt-users] External Auth using Active Directory 2008
Here is the Apache Log from my last login attempt [Fri Feb 3 18:02:40 2012] [debug]: Password validation required for service - Executing... (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:155) [Fri Feb 3 18:02:40 2012] [debug]: Trying external auth service: My_LDAP (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:16) [Fri Feb 3 18:02:40 2012] [debug]: LDAP Search === Base: DC=xx,DC=xxx,DC=edu == Filter: ((sAMAccountName=van.howell)((ObjectCategory=User)(ObjectClass=Person))) == Attrs: dn (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:43) [Fri Feb 3 18:02:40 2012] [debug]: Found LDAP DN: CN=Howell\, Van,OU=Staff,OU=LCU,DC=xx,DC=xxx,DC=edu (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:75) [Fri Feb 3 18:02:40 2012] [debug]: LDAP Search === Base: DC=xx,DC=xxx,DC=edu == Filter: (member=CN=Howell, Van,OU=Staff,OU=LCU,DC=xx,DC=xxx,DC=edu) == Attrs: dn (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:100) [Fri Feb 3 18:02:40 2012] [info]: My_LDAP AUTH FAILED: van.howell (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:127) [Fri Feb 3 18:02:40 2012] [debug]: LDAP password validation result: 0 (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:334) [Fri Feb 3 18:02:40 2012] [debug]: Password Validation Check Result: 0 (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:159) [Fri Feb 3 18:02:40 2012] [debug]: Autohandler called ExternalAuth. Response: (0, Password Invalid) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:11) [Fri Feb 3 18:02:40 2012] [error]: FAILED LOGIN for van.howell from 10.1.5.9 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:655) Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Friday, February 03, 2012 11:32 AM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] External Auth using Active Directory 2008 On Thu, Feb 02, 2012 at 06:21:20PM +, Howell, Van wrote: I added Set($LogToSyslog, debug); to my RT_SiteConfig.pm file I don't seem to be getting an more logging. I restarted the httpd service, didn't see any more logging so I restarted the server. Unfortunately - it seems you have syslog itself set to discard debug messages. You can try turning up $LogToScreen to debug and then check your webserver logs instead of your syslog logs. -kevin This is the entire tail of the messages log [root@OpenNMS etc]# tail /var/log/messages Feb 2 11:56:45 localhost abrtd: Dump directory is a duplicate of /var/spool/abrt/ccpp-2012-02-01-14:08:36-18683 Feb 2 11:56:45 localhost abrtd: Deleting dump directory ccpp-2012-02-02-11:54:56-2567 (dup of ccpp-2012-02-01-14:08:36-18683), sending dbus signal Feb 2 12:00:42 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:05:43 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:10:44 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (helpdesk.lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:14:00 localhost RT: My_LDAP AUTH FAILED: van.howell (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalA uth/LDAP.pm:127) Feb 2 12:14:00 localhost RT: FAILED LOGIN for van.howell from 10.1.5.9 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:655) Feb 2 12:15:45 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (helpdesk.lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:16:16 localhost RT: My_LDAP AUTH FAILED: van.howell (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalA uth/LDAP.pm:127) Feb 2 12:16:16 localhost RT: FAILED LOGIN for van.howell from 10.1.5.9 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:655) Thanks for helping with this. Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com
Re: [rt-users] External Auth using Active Directory 2008
One more thing, It's like it is not sending the password to AD at all. I can type a random password multiple times and is does not lock my account. Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Friday, February 03, 2012 11:32 AM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] External Auth using Active Directory 2008 On Thu, Feb 02, 2012 at 06:21:20PM +, Howell, Van wrote: I added Set($LogToSyslog, debug); to my RT_SiteConfig.pm file I don't seem to be getting an more logging. I restarted the httpd service, didn't see any more logging so I restarted the server. Unfortunately - it seems you have syslog itself set to discard debug messages. You can try turning up $LogToScreen to debug and then check your webserver logs instead of your syslog logs. -kevin This is the entire tail of the messages log [root@OpenNMS etc]# tail /var/log/messages Feb 2 11:56:45 localhost abrtd: Dump directory is a duplicate of /var/spool/abrt/ccpp-2012-02-01-14:08:36-18683 Feb 2 11:56:45 localhost abrtd: Deleting dump directory ccpp-2012-02-02-11:54:56-2567 (dup of ccpp-2012-02-01-14:08:36-18683), sending dbus signal Feb 2 12:00:42 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:05:43 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:10:44 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (helpdesk.lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:14:00 localhost RT: My_LDAP AUTH FAILED: van.howell (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalA uth/LDAP.pm:127) Feb 2 12:14:00 localhost RT: FAILED LOGIN for van.howell from 10.1.5.9 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:655) Feb 2 12:15:45 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (helpdesk.lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:16:16 localhost RT: My_LDAP AUTH FAILED: van.howell (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalA uth/LDAP.pm:127) Feb 2 12:16:16 localhost RT: FAILED LOGIN for van.howell from 10.1.5.9 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:655) Thanks for helping with this. Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Thursday, February 02, 2012 11:17 AM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] External Auth using Active Directory 2008 On Thu, Feb 02, 2012 at 04:16:53PM +, Howell, Van wrote: I do not have Debugging turned on. I am going to need some help turning it on since this is new to me. Here are some errors from /var/log/messages... This is a failed attempt... Feb 1 16:02:25 localhost RT: My_LDAP AUTH FAILED mary.servantez (can't bind: LDAP_INVALID_CREDENTIALS 49 ) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/Externa lA uth/LDAP.pm:82) Feb 1 16:02:25 localhost RT: FAILED LOGIN for mary.servantez from 10.1.41.95 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:655) Here is a successful attemt Feb 2 10:14:02 localhost RT: RT::Authen::ExternalAuth::LDAP::GetAuth External Auth OK ( My_LDAP ): test.account (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/Externa lA uth/LDAP.pm:139) Feb 2 10:14:02 localhost RT: Couldn't enable user 28 (/opt/rt4/sbin/../lib/RT/User.pm:1066) Feb 2 10:14:02 localhost RT: User marked as ENABLED ( test.account ) per External Service (, ) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/Externa lA uth.pm:274) Feb 2 10:14:02 localhost RT: RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Address1: , City: , Country: , EmailAddress: test.acco...@lcu.edu, ExternalAuthId: test.account, Gecos: test.account, Name: test.account, Organization: , RealName: Test Account, State: , WorkPhone: , Zip: (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT
Re: [rt-users] External Auth using Active Directory 2008
Here is the debug log for a successful attempt [Fri Feb 3 18:20:32 2012] [warning]: Couldn't enable user 28 (/opt/rt4/sbin/../lib/RT/User.pm:1066) [Fri Feb 3 18:20:32 2012] [info]: User marked as ENABLED ( test.account ) per External Service (, ) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:274) [Fri Feb 3 18:20:32 2012] [debug]: RT::Authen::ExternalAuth::CanonicalizeUserInfo called by RT::Authen::ExternalAuth /opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm 553 with: Name: test.account (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:450) [Fri Feb 3 18:20:32 2012] [debug]: Attempting to get user info using this external service: My_LDAP (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:458) [Fri Feb 3 18:20:32 2012] [debug]: Attempting to use this canonicalization key: Name (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:472) [Fri Feb 3 18:20:32 2012] [debug]: LDAP Search === Base: DC=xx,DC=xxx,DC=edu == Filter: (((ObjectCategory=User)(ObjectClass=Person))(sAMAccountName=test.account)) == Attrs: l,cn,st,mail,sAMAccountName,co,streetAddress,postalCode,telephoneNumber,sAMAccountName,physicalDeliveryOfficeName,sAMAccountName (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:195) [Fri Feb 3 18:20:32 2012] [info]: RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Address1: , City: , Country: , EmailAddress: test.acco...@lcu.edu, ExternalAuthId: test.account, Gecos: test.account, Name: test.account, Organization: , RealName: Test Account, State: , WorkPhone: , Zip: (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:536) [Fri Feb 3 18:20:32 2012] [debug]: UPDATED user ( test.account ) from External Service (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:307) [Fri Feb 3 18:20:32 2012] [info]: Successful login for test.account from 10.1.5.9 (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:219) [Fri Feb 3 18:20:32 2012] [debug]: Autohandler called ExternalAuth. Response: (1, Successful login) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:11) Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Friday, February 03, 2012 11:32 AM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] External Auth using Active Directory 2008 On Thu, Feb 02, 2012 at 06:21:20PM +, Howell, Van wrote: I added Set($LogToSyslog, debug); to my RT_SiteConfig.pm file I don't seem to be getting an more logging. I restarted the httpd service, didn't see any more logging so I restarted the server. Unfortunately - it seems you have syslog itself set to discard debug messages. You can try turning up $LogToScreen to debug and then check your webserver logs instead of your syslog logs. -kevin This is the entire tail of the messages log [root@OpenNMS etc]# tail /var/log/messages Feb 2 11:56:45 localhost abrtd: Dump directory is a duplicate of /var/spool/abrt/ccpp-2012-02-01-14:08:36-18683 Feb 2 11:56:45 localhost abrtd: Deleting dump directory ccpp-2012-02-02-11:54:56-2567 (dup of ccpp-2012-02-01-14:08:36-18683), sending dbus signal Feb 2 12:00:42 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:05:43 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:10:44 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (helpdesk.lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:14:00 localhost RT: My_LDAP AUTH FAILED: van.howell (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalA uth/LDAP.pm:127) Feb 2 12:14:00 localhost RT: FAILED LOGIN for van.howell from 10.1.5.9 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:655) Feb 2 12:15:45 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (helpdesk.lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:16:16 localhost RT: My_LDAP
Re: [rt-users] External Auth using Active Directory 2008
I ran the install again, The version it put on is 0.09 FALCONE/RT-Authen-ExternalAuth-0.09.tar.gz Not the new version. I still have the same problem I shelled into CPAN perl -MCPAN -e shell then I ran install RT::Authen::ExternalAuth Is there a different way? Sorry for the dumb questions, but I'm new to this. Van From: rt-users-boun...@lists.bestpractical.com [rt-users-boun...@lists.bestpractical.com] on behalf of Kevin Falcone [falc...@bestpractical.com] Sent: Friday, February 03, 2012 1:05 PM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] External Auth using Active Directory 2008 On Fri, Feb 03, 2012 at 06:08:46PM +, Howell, Van wrote: Here is the Apache Log from my last login attempt [Fri Feb 3 18:02:40 2012] [debug]: Found LDAP DN: CN=Howell\, Van,OU=Staff,OU=LCU,DC=xx,DC=xxx,DC=edu (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:75) There was a bug reported about commas in DNs causing problems, I wonder if you're running afoul of that (note that your testuser has a different CN). You can try with 0.09_02 which my colleague released last week and is available on CPAN. It contains a bugfix for this. -kevin [Fri Feb 3 18:02:40 2012] [debug]: LDAP Search === Base: DC=xx,DC=xxx,DC=edu == Filter: (member=CN=Howell, Van,OU=Staff,OU=LCU,DC=xx,DC=xxx,DC=edu) == Attrs: dn (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:100) [Fri Feb 3 18:02:40 2012] [info]: My_LDAP AUTH FAILED: van.howell (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:127) [Fri Feb 3 18:02:40 2012] [debug]: LDAP password validation result: 0 (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:334) [Fri Feb 3 18:02:40 2012] [debug]: Password Validation Check Result: 0 (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:159) [Fri Feb 3 18:02:40 2012] [debug]: Autohandler called ExternalAuth. Response: (0, Password Invalid) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:11) [Fri Feb 3 18:02:40 2012] [error]: FAILED LOGIN for van.howell from 10.1.5.9 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:655) RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
Re: [rt-users] External Auth using Active Directory 2008
# cat RT_SiteConfig.pm Set($ExternalAuthPriority, [ 'My_LDAP',] ); Set($ExternalInfoPriority, [ 'My_LDAP',] ); Set($ExternalServiceUsesSSLorTLS,0); Set($AutoCreateNonExternalUsers, 0); Set($ExternalSettings, { 'My_LDAP' = { 'type' = 'ldap', 'server'= 'zeus.mydomain.edu', 'user' = 'CN=LDAPRT,OU=CampusServices,DC=mydomain,DC=mydomain,DC=edu', 'pass' = '*', 'base' = 'DC=mydomain,DC=mydomain,DC=edu', 'filter'= '((ObjectCategory=User)(ObjectClass=Person))', 'd_filter' = '(userAccountControl:1.2.840.113556.1.4.803:=2)', 'tls' = 0, # 'ssl_version' = 3, 'net_ldap_args' = [ version = 3 ], 'group' = 'CN=RTUsers,OU=CampusServices,DC= mydomain,DC=mydomain,DC=edu', 'group_attr'= 'member', 'attr_match_list' = [ 'Name', 'EmailAddress' ], 'attr_map' = { 'Name' = 'sAMAccountName', 'EmailAddress' = 'mail', 'Organization' = 'physicalDeliveryOfficeName', 'RealName' = 'cn', 'ExternalAuthId' = 'sAMAccountName', 'Gecos' = 'sAMAccountName', 'WorkPhone' = 'telephoneNumber', 'Address1' = 'streetAddress', 'City' = 'l', 'State' = 'st', 'Zip' = 'postalCode', 'Country' = 'co' } } } ); 1; EOF I do not have Debugging turned on. I am going to need some help turning it on since this is new to me. Here are some errors from /var/log/messages... This is a failed attempt... Feb 1 16:02:25 localhost RT: My_LDAP AUTH FAILED mary.servantez (can't bind: LDAP_INVALID_CREDENTIALS 49 ) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:82) Feb 1 16:02:25 localhost RT: FAILED LOGIN for mary.servantez from 10.1.41.95 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:655) Here is a successful attemt Feb 2 10:14:02 localhost RT: RT::Authen::ExternalAuth::LDAP::GetAuth External Auth OK ( My_LDAP ): test.account (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:139) Feb 2 10:14:02 localhost RT: Couldn't enable user 28 (/opt/rt4/sbin/../lib/RT/User.pm:1066) Feb 2 10:14:02 localhost RT: User marked as ENABLED ( test.account ) per External Service (, ) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:274) Feb 2 10:14:02 localhost RT: RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Address1: , City: , Country: , EmailAddress: test.acco...@lcu.edu, ExternalAuthId: test.account, Gecos: test.account, Name: test.account, Organization: , RealName: Test Account, State: , WorkPhone: , Zip: (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:536) Feb 2 10:14:02 localhost RT: Successful login for test.account from 10.1.5.9 (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:219) Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Wednesday, February 01, 2012 5:33 PM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] External Auth using Active Directory 2008 On Wed, Feb 01, 2012 at 11:04:38PM +, Howell, Van wrote: I have added several users into the RTUsers group I set up in AD. The AD Administrator, a common Domain User called Test.Account that is located in the OU with all my other users, my personal account also located in the OU with all the other users and an alternate administrative account I use. I can logon to RT with the AD Administrator account. I can logon to RT with the Test.Account and I can log in using my alternate account. But I
Re: [rt-users] External Auth using Active Directory 2008
I added Set($LogToSyslog, debug); to my RT_SiteConfig.pm file I don't seem to be getting an more logging. I restarted the httpd service, didn't see any more logging so I restarted the server. This is the entire tail of the messages log [root@OpenNMS etc]# tail /var/log/messages Feb 2 11:56:45 localhost abrtd: Dump directory is a duplicate of /var/spool/abrt/ccpp-2012-02-01-14:08:36-18683 Feb 2 11:56:45 localhost abrtd: Deleting dump directory ccpp-2012-02-02-11:54:56-2567 (dup of ccpp-2012-02-01-14:08:36-18683), sending dbus signal Feb 2 12:00:42 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:05:43 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:10:44 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (helpdesk.lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:14:00 localhost RT: My_LDAP AUTH FAILED: van.howell (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:127) Feb 2 12:14:00 localhost RT: FAILED LOGIN for van.howell from 10.1.5.9 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:655) Feb 2 12:15:45 localhost RT: The actual HTTP_HOST (192.168.1.200) does NOT match the configured WebDomain (helpdesk.lcu.edu). Perhaps you should Set($WebDomain, '192.168.1.200'); in RT_SiteConfig.pm, otherwise your internal links may be broken. (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:1087) Feb 2 12:16:16 localhost RT: My_LDAP AUTH FAILED: van.howell (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:127) Feb 2 12:16:16 localhost RT: FAILED LOGIN for van.howell from 10.1.5.9 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:655) Thanks for helping with this. Van Howell System Administrator Lubbock Christian University -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Kevin Falcone Sent: Thursday, February 02, 2012 11:17 AM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] External Auth using Active Directory 2008 On Thu, Feb 02, 2012 at 04:16:53PM +, Howell, Van wrote: I do not have Debugging turned on. I am going to need some help turning it on since this is new to me. Here are some errors from /var/log/messages... This is a failed attempt... Feb 1 16:02:25 localhost RT: My_LDAP AUTH FAILED mary.servantez (can't bind: LDAP_INVALID_CREDENTIALS 49 ) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalA uth/LDAP.pm:82) Feb 1 16:02:25 localhost RT: FAILED LOGIN for mary.servantez from 10.1.41.95 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:655) Here is a successful attemt Feb 2 10:14:02 localhost RT: RT::Authen::ExternalAuth::LDAP::GetAuth External Auth OK ( My_LDAP ): test.account (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalA uth/LDAP.pm:139) Feb 2 10:14:02 localhost RT: Couldn't enable user 28 (/opt/rt4/sbin/../lib/RT/User.pm:1066) Feb 2 10:14:02 localhost RT: User marked as ENABLED ( test.account ) per External Service (, ) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalA uth.pm:274) Feb 2 10:14:02 localhost RT: RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Address1: , City: , Country: , EmailAddress: test.acco...@lcu.edu, ExternalAuthId: test.account, Gecos: test.account, Name: test.account, Organization: , RealName: Test Account, State: , WorkPhone: , Zip: (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalA uth.pm:536) Feb 2 10:14:02 localhost RT: Successful login for test.account from 10.1.5.9 (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalA uth.pm:219) Since you're seeing these in /var/log/messages I assume you're using the syslog configuration. You want to read about LogToSyslog in etc/RT_Config.pm then copy that setting to RT_SiteConfig.pm and change it to debug. Restart RT and try the failed login again. -kevin RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
[rt-users] External Auth using Active Directory 2008
I am new to RT, Just setup a 4.0.4 server this week. I am using CentOS 6.2 64 bit. MySQL Apache I used Ken Prickett's CentOS5InstallPlus Some WIKI instructions and made the necessary mods to get things working, so to speak. I am using the RT_SiteConfig.pm provided in the install doc. The only changes I made was to add my information. The problem I am having is strange. I have added several users into the RTUsers group I set up in AD. The AD Administrator, a common Domain User called Test.Account that is located in the OU with all my other users, my personal account also located in the OU with all the other users and an alternate administrative account I use. I can logon to RT with the AD Administrator account. I can logon to RT with the Test.Account and I can log in using my alternate account. But I cannot logon using my personal account. I also had my assistant test with her account and she cannot log on. I have studied the problem and cannot find anything unique about the accounts that cannot logon. Has anyone seen this problem before? Van Howell System Administrator Lubbock Christian University RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
[rt-users] Active Directory Authenticaton Problem
I have just setup a RT server using RT 3.8.7 I am running on CentOS 5.4 I used the CentOS 5.4 + Active Directory 2003 + Exchange 2007 + Postfix + Rt install script written by Kenny Prickett. I cannot get the AD authentication to work correctly. I have searched the archives for my problem but have been unable to find a solution. I read an article about problems with user accounts that have commas in the CN. http://www.gossamer-threads.com/lists/rt/users/86910 All of our accounts have commas. I am able to connect with an account I setup that does not have a comma in the CN. The solution in this post was not clear to me. It appears Net::LDAP::Filter is throwing away \s, so it may be worth trying to forcibly escape the \, on line 98ish before passing to new(), but without a system exhibiting this problem, its hard to test a change like that. How do I forcibly escape the \, ? Van Howell System Administrator Lubbock Christian University Discover RT's hidden secrets with RT Essentials from O'Reilly Media. Buy a copy at http://rtbook.bestpractical.com