Re: [rt-users] RT-Users Digest, Vol 85, Issue 50
Hi John, It looks that you are almost there. You overcame the site_config issue. I don't recall you RT version. However, please install the new RT-Authen-ExternalAuth-0.08. You can download it from: http://search.cpan.org/CPAN/authors/id/F/FA/FALCONE/RT-Authen-ExternalAuth-0 .08_01.tar.gz This might solve the issue you are having. Best, Luis Avendaño Grupo Latinoamericano ACM Message: 3 Date: Mon, 18 Apr 2011 08:42:48 -0700 (PDT) From: "john s." To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for Message-ID: <31425121.p...@talk.nabble.com> Content-Type: text/plain; charset=us-ascii Greetign Raphael i have changed this ... and nothing happens ... here is an outline from my apachelogfile: [Mon Apr 18 15:33:33 2011] [debug]: Attempting to use external auth service: My_LDAP (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm :64) [Mon Apr 18 15:33:33 2011] [debug]: Calling UserExists with $username (RT-USER) and $service (My_LDAP) (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm :105) [Mon Apr 18 15:33:33 2011] [debug]: UserExists params: username: RT-USER , service: My_LDAP (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LD AP.pm:274) [Mon Apr 18 15:33:33 2011] [debug]: LDAP Search === Base: ou=SBAOU Unit,dc=srv41,dc=sbah,dc=local == Filter: (&(ObjectClass=*)(sAMAccountName=RT-USER)) == Attrs: cn,sAMAccountName (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LD AP.pm:304) [Mon Apr 18 15:33:33 2011] [debug]: User Check Failed :: ( My_LDAP ) RT-USER User not found (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LD AP.pm:318) [Mon Apr 18 15:33:33 2011] [debug]: Autohandler called ExternalAuth. Response: (0, No User) (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:26) [Mon Apr 18 15:33:33 2011] [error]: FAILED LOGIN for RT-USER from 192.168.112.1 (/opt/rt3/bin/../lib/RT/Interface/Web.pm:424) [Mon Apr 18 15:33:33 2011] [debug]: Attempting to use external auth service: My_LDAP (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm :64) [Mon Apr 18 15:33:33 2011] [debug]: SSO Failed and no user to test with. Nexting (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm :92) [Mon Apr 18 15:33:33 2011] [debug]: Autohandler called ExternalAuth. Response: (0, No User) (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:26) [Mon Apr 18 15:33:34 2011] [debug]: Attempting to use external auth service: My_LDAP (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm :64) [Mon Apr 18 15:33:34 2011] [debug]: SSO Failed and no user to test with. Nexting (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm :92) [Mon Apr 18 15:33:34 2011] [debug]: Autohandler called ExternalAuth. Response: (0, No User) (/opt/rt3/local/ so as far as i can see he find the user ... but the user check fails but i don't know what does it mean exactly ps: i thought perl doesn't pay much attention on spaces best regards john s. -- View this message in context: http://old.nabble.com/Re%3A-RT-Authen-ExternalAuth-0.08-which-packages-i-nee d-for-tp31388437p31425121.html Sent from the Request Tracker - User mailing list archive at Nabble.com.
Re: [rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for
# 'attr_map'
=> { 'Name' => 'sAMAccountName',
#'EmailAddress' => 'mail',
# 'Organization' => 'physicalDeliveryOfficeName',
# 'RealName' => 'cn',
# 'ExternalAuthId' => 'sAMAccountName',
# 'Gecos' => 'sAMAccountName',
# 'WorkPhone' => 'telephoneNumber',
# 'Address1' => 'streetAddress',
# 'City' => 'l',
# 'State' => 'st',
# 'Zip' => 'postalCode',
# 'Country' => 'co'
}
}
#}
);
So as far as you can see, the other version with clean comments and # signs
doesn't work.
But i don't know why
or if i walking completely off the track at the moment :-(
Best regards john s.
--
View this message in context:
http://old.nabble.com/Re%3A-RT-Authen-ExternalAuth-0.08-which-packages-i-nee
d-for-tp31388437p31422830.html
Sent from the Request Tracker - User mailing list archive at Nabble.com.
--
Luis Avendaño
Re: [rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for
Hi John, you have a syxtax error somewhere, and it's pretty close when you set EmailAddress. Your error is: Couldn't load RT config file RT_SiteConfig.pm:nnsyntax error at /opt/rt3/etc/RT_SiteConfig.pm line 146, near "'EmailAddress'"nCompilation failed in require at /opt/rt3/bin/../lib/RT/Config.pm line 562.nCompilation failed in require at (eval 2) line 1.n Try to make a configuration file without all the comments you have within the Authen:External008.. conf (delete all the #). You might be missing something. Best Regards, - Greetings Louis Despite your piece of good advice my Syntax is correct also, Cause i only used the # Sign to comment out the Lines which will apache2 get into trouble.If try to run normally the same issue appears. And in refer to the Readme .. you can also write: 'attr_match_list' => [ 'Name', 'EmailAddress', 'RealName', 'WorkPhone', 'Address2' ], the only important thing is to set the brackets correctly and this will benoticed if you try to restart apache So.. thats not the problem any other clue or idea? best regards john s. Message: 3 Date: Fri, 15 Apr 2011 02:26:11 -0700 (PDT) From: "john s." To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for Message-ID: Content-Type: text/plain; charset=us-ascii Greetings Louis Despite your piece of good advice my Syntax is correct also, Cause i only used the # Sign to comment out the Lines which will apache2 get into trouble.If try to run normally the same issue appears. And in refer to the Readme .. you can also write: 'attr_match_list' => [ 'Name', 'EmailAddress', 'RealName', 'WorkPhone', 'Address2' ], the only important thing is to set the brackets correctly and this will benoticed if you try to restart apache So.. thats not the problem any other clue or idea? best regards john s. -- View this message in context: Sent from the Request Tracker - User mailing list archive at Nabble.com.
Re: [rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for
Hi John,
apparently your problem is this:
'attr_match_list' => [ 'Name',
# 'EmailAddress', ],
# 'attr_map'
=> { 'Name' => 'sAMAccountName',
...
You have to ensure formatting correctly the list. For example:
'attr_match_list' => [ 'Name' ]... you are doing this: 'attr_match_list' =>
[ 'Name',
In addition, check also attr_map. For example:
'attr_map' => { 'Name' =>
'sAMAccountName',
'EmailAddress' => 'mail',
'RealName' => 'cn',
'WorkPhone'
=> 'telephoneNumber'
}
The error you are getting is that the SiteConfig is not correctly formed.
Hope this helps,
Best,
Luis Avendaño
Grupo Latinoamericano ACM
Av. Venezuela Torre America,
Piso 1 Ofic 116, Bello Monte.
Caracas, Venezuela
Phone: (+58) 212-763.4104
Fax: (+58) 212-763.1847
http://www.acmgrp.com
USO DE CORREO ELECTRÓNICO DE
ACM **
Este mensaje puede contener información únicamente de interés para ACM
GROUP o sus negocios y es enviado solamente al destinatario designado, y
puede contener información privilegiada, patentada o privada. La copia,
distribución, revelación o cualquier uso de la información contenida en
este mensaje es permitida solo a personas autorizadas. Si ha recibido este
correo electrónico por error, por favor destruyalo y notifique
inmediatamente a webmas...@acmgrp.com o al remitente
** ACM GROUP INTERNET E-MAIL USE
***
This message may contain information solely of the interest of ACM or its
businesses and is delivered for the designated recipient only and may
containprivileged, proprietary, or otherwise privatetion. Copying,
distribution, disclosure or any use of the information contained in this
transmission is permitted only to authorized parties. If you have received
this e-mail by error, please destroy it and notify webmas...@acmgrp.com or
the sender immediately
**
Re: [rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for
Hi Jhon,
Based on the Rt_SiteConfig piece you sent, there is a missing variable
setting in your configuration.
You put this:
Set($AutoCreateNonExternalUsers, 0);
'My_LDAP' => { ## GENERIC
.
It should be like this:
Set($ExternalSettings, { # AN EXAMPLE DB SERVICE
'My_LDAP' =>
In addition, based on the log you sent, you are also configuring My_SSO and
My_MySQL. If you are not using these services to authenticate, please delete
them from the RT_SiteConfig file. If you are using them I would recommend
you going step by step. First configure the LDAP, then go for the next
source
This is an example of a working conf, using RT 3.8.9 and LDAP = Active
Directory:
#Set($WebExternalAuth, 1);
#Set($WebExternalAuthContinuous, 1);
#Set($WebExternalGecos , undef);
#Set($WebExternalAuto , true);
#Set($WebFallbackToInternalAuth , undef);
Set($ExternalAuthPriority, [ 'My_LDAP' ]);
Set($ExternalInfoPriority, ['My_LDAP']);
Set($ExternalServiceUsesSSLorTLS,0);
Set($AutoCreateNonExternalUsers,0);
Set($ExternalSettings, {
'My_LDAP' => { ## GENERIC SECTION
'type'
=> 'ldap',
'server'
=> '***.***.***.***',
'user'
=> '*\*',
'pass'
=> '',
'base'
=> 'DC=*,DC=com,DC=ve',
'filter'
=> '(objectClass=*)',
'd_filter'
=> '(userAccountControl=514)',
'tls'
=> 0,
'net_ldap_args'
=> [version => 3 ],
#'group'
=> 'GROUP_NAME',
#'group_attr'
=> 'GROUP_ATTR',
'attr_match_list'
=> ['Name',
'EmailAddress'
# 'RealName',
# 'WorkPhone'
],
'attr_map'
=> { 'Name' => 'sAMAccountName',
'EmailAddress' => 'mail',
'RealName' => 'cn',
'WorkPhone' => 'telephoneNumber'
}
}
}
);
o Set( @Plugins, qw( RT::Authen::ExternalAuth ) );
Give a shot with this, and then get back with the resulted log file and
final configuration.
Hope this helps,
Best,
Luis Avendaño
Re: [rt-users] Problem on RT::Authen::ExternalAuth
Hi All,
just fixed the problem. Apparently there is a bug on the ExternalAuth
version I was using for RT 3.8.9.
You need to download
Got it from this post:
Thanks anyway!
Luis Avendaño
On Tue 12/04/11 5:00 PM , "Luis Avendaño" lavend...@acmgrp.com sent:
Hi,
I have installed and configured the RT::Authen::ExternalAuth.
My environment is: Solaris (sun4v sparc SUNW,Sun-Fire-T200), RT=3.8.9, BD=
PostgreSQL=10.2, LDAP = Active Directory
I realized that when I load the RT main page, I always get the following
log, NOTHING ELSE RELATED TO ExternalAuth:
***
[Tue Apr 12 21:05:15 2011] [debug]: Reloading RT::User to work around a bug
in RT-3.8.0 and RT-3.8.1
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:14)
[Tue Apr 12 21:05:28 2011] [debug]: Reloading RT::User to work around a
bug in RT-3.8.0 and RT-3.8.1
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:14)
[Tue Apr 12 21:05:52 2011] [debug]: Attempting to use external auth
service: My_LDAP
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:64)
[Tue Apr 12 21:05:52 2011] [debug]: SSO Failed and no user to test with.
Nexting
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:92)
[Tue Apr 12 21:05:52 2011] [debug]: Autohandler called ExternalAuth.
Response: (0, No User)
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:26)
***
However, when a LDAP user tries to login, the following error is logged:
***
[Tue Apr 12 21:05:06 2011] [error]: FAILED LOGIN for cdomi3 from
172.16.136.54 (/rt/rt3/bin/../lib/RT/Interface/Web.pm:555)
***
Any user which was locally created in RT, is able to log in.
The ExternalAuth related configuration is as follows:
---
#Set($WebExternalAuth, 1);
#Set($WebExternalAuthContinuous, 1);
#Set($WebExternalAuto , true);
Set($ExternalAuthPriority, [ 'My_LDAP'
]
);
Set($ExternalInfoPriority, [
'My_LDAP'
]
);
Set($ExternalServiceUsesSSLorTLS, 0);
Set($AutoCreateNonExternalUsers, 0);
SOME LDAPP INFORMATION HAS BEEN MODIFIED (IP ADDRESS OF THE SERVER,
DOMAINUSER', USERPASSWORD and DC=COMPANY).
Set($ExternalSettings, {
'My_LDAP' => { ## GENERIC SECTION
'type' => 'ldap',
'server' => ' ',
'user' => ' ',
'pass' => '',
'base' => ' ,DC=com,DC=ve',
'filter' => '(objectClass=*)',
'd_filter' =>
'(userAccountControl=514)',
'tls' => 0,
#'ssl_version' => 3,
'net_ldap_args' => [ version => 3 ],
#'group' => 'GROUP_NAME',
#'group_attr' => 'GROUP_ATTR',
'attr_match_list' => [ 'Name',
'EmailAddress'
# 'RealName',
# 'WorkPhone'
],
'attr_map' => { 'Name' =>
&
[rt-users] Problem on RT::Authen::ExternalAuth
Hi,
I have installed and configured the RT::Authen::ExternalAuth.
My environment is: Solaris (sun4v sparc SUNW,Sun-Fire-T200), RT=3.8.9, BD=
PostgreSQL=10.2, LDAP = Active Directory
I realized that when I load the RT main page, I always get the following
log, NOTHING ELSE RELATED TO ExternalAuth:
***
[Tue Apr 12 21:05:15 2011] [debug]: Reloading RT::User to work around a bug
in RT-3.8.0 and RT-3.8.1
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:14)
[Tue Apr 12 21:05:28 2011] [debug]: Reloading RT::User to work around a
bug in RT-3.8.0 and RT-3.8.1
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:14)
[Tue Apr 12 21:05:52 2011] [debug]: Attempting to use external auth
service: My_LDAP
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:64)
[Tue Apr 12 21:05:52 2011] [debug]: SSO Failed and no user to test with.
Nexting
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:92)
[Tue Apr 12 21:05:52 2011] [debug]: Autohandler called ExternalAuth.
Response: (0, No User)
(/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:26)
***
However, when a LDAP user tries to login, the following error is logged:
***
[Tue Apr 12 21:05:06 2011] [error]: FAILED LOGIN for cdomi3 from
172.16.136.54 (/rt/rt3/bin/../lib/RT/Interface/Web.pm:555)
***
Any user which was locally created in RT, is able to log in.
The ExternalAuth related configuration is as follows:
---
#Set($WebExternalAuth, 1);
#Set($WebExternalAuthContinuous, 1);
#Set($WebExternalAuto , true);
Set($ExternalAuthPriority, [ 'My_LDAP'
]
);
Set($ExternalInfoPriority, [
'My_LDAP'
]
);
Set($ExternalServiceUsesSSLorTLS, 0);
Set($AutoCreateNonExternalUsers, 0);
SOME LDAPP INFORMATION HAS BEEN MODIFIED (IP ADDRESS OF THE SERVER,
DOMAINUSER', USERPASSWORD and DC=COMPANY).
Set($ExternalSettings, {
'My_LDAP' => { ## GENERIC SECTION
'type' => 'ldap',
'server' => '',
'user' => '',
'pass' => '',
'base' => ',DC=com,DC=ve',
'filter' => '(objectClass=*)',
'd_filter' =>
'(userAccountControl=514)',
'tls' => 0,
#'ssl_version' => 3,
'net_ldap_args' => [ version => 3 ],
#'group' => 'GROUP_NAME',
#'group_attr' => 'GROUP_ATTR',
'attr_match_list' => [ 'Name',
'EmailAddress'
# 'RealName',
# 'WorkPhone'
],
'attr_map' => { 'Name' =>
'sAMAccountName',
'EmailAddress' => 'mail',
'RealName' => 'cn',
'WorkPhone' => 'telephoneNumber'
}
}
}
);
Set( @Plugins, qw( RT::Authen::ExternalAuth ) );
Set( %GnuPG, Enable => 0);
I have done a lot of research, but no luck so far
I really appreciate any help that you can provide me guys,
Best Regards,
Luis Avendaño
