Re: [rt-users] RT-Users Digest, Vol 85, Issue 50
Hi John, It looks that you are almost there. You overcame the site_config issue. I don't recall you RT version. However, please install the new RT-Authen-ExternalAuth-0.08. You can download it from: http://search.cpan.org/CPAN/authors/id/F/FA/FALCONE/RT-Authen-ExternalAuth-0 .08_01.tar.gz This might solve the issue you are having. Best, Luis Avendaño Grupo Latinoamericano ACM Message: 3 Date: Mon, 18 Apr 2011 08:42:48 -0700 (PDT) From: "john s." To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for Message-ID: <31425121.p...@talk.nabble.com> Content-Type: text/plain; charset=us-ascii Greetign Raphael i have changed this ... and nothing happens ... here is an outline from my apachelogfile: [Mon Apr 18 15:33:33 2011] [debug]: Attempting to use external auth service: My_LDAP (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm :64) [Mon Apr 18 15:33:33 2011] [debug]: Calling UserExists with $username (RT-USER) and $service (My_LDAP) (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm :105) [Mon Apr 18 15:33:33 2011] [debug]: UserExists params: username: RT-USER , service: My_LDAP (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LD AP.pm:274) [Mon Apr 18 15:33:33 2011] [debug]: LDAP Search === Base: ou=SBAOU Unit,dc=srv41,dc=sbah,dc=local == Filter: (&(ObjectClass=*)(sAMAccountName=RT-USER)) == Attrs: cn,sAMAccountName (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LD AP.pm:304) [Mon Apr 18 15:33:33 2011] [debug]: User Check Failed :: ( My_LDAP ) RT-USER User not found (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LD AP.pm:318) [Mon Apr 18 15:33:33 2011] [debug]: Autohandler called ExternalAuth. Response: (0, No User) (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:26) [Mon Apr 18 15:33:33 2011] [error]: FAILED LOGIN for RT-USER from 192.168.112.1 (/opt/rt3/bin/../lib/RT/Interface/Web.pm:424) [Mon Apr 18 15:33:33 2011] [debug]: Attempting to use external auth service: My_LDAP (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm :64) [Mon Apr 18 15:33:33 2011] [debug]: SSO Failed and no user to test with. Nexting (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm :92) [Mon Apr 18 15:33:33 2011] [debug]: Autohandler called ExternalAuth. Response: (0, No User) (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:26) [Mon Apr 18 15:33:34 2011] [debug]: Attempting to use external auth service: My_LDAP (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm :64) [Mon Apr 18 15:33:34 2011] [debug]: SSO Failed and no user to test with. Nexting (/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm :92) [Mon Apr 18 15:33:34 2011] [debug]: Autohandler called ExternalAuth. Response: (0, No User) (/opt/rt3/local/ so as far as i can see he find the user ... but the user check fails but i don't know what does it mean exactly ps: i thought perl doesn't pay much attention on spaces best regards john s. -- View this message in context: http://old.nabble.com/Re%3A-RT-Authen-ExternalAuth-0.08-which-packages-i-nee d-for-tp31388437p31425121.html Sent from the Request Tracker - User mailing list archive at Nabble.com.
Re: [rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for
# 'attr_map' => { 'Name' => 'sAMAccountName', #'EmailAddress' => 'mail', # 'Organization' => 'physicalDeliveryOfficeName', # 'RealName' => 'cn', # 'ExternalAuthId' => 'sAMAccountName', # 'Gecos' => 'sAMAccountName', # 'WorkPhone' => 'telephoneNumber', # 'Address1' => 'streetAddress', # 'City' => 'l', # 'State' => 'st', # 'Zip' => 'postalCode', # 'Country' => 'co' } } #} ); So as far as you can see, the other version with clean comments and # signs doesn't work. But i don't know why or if i walking completely off the track at the moment :-( Best regards john s. -- View this message in context: http://old.nabble.com/Re%3A-RT-Authen-ExternalAuth-0.08-which-packages-i-nee d-for-tp31388437p31422830.html Sent from the Request Tracker - User mailing list archive at Nabble.com. -- Luis Avendaño
Re: [rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for
Hi John, you have a syxtax error somewhere, and it's pretty close when you set EmailAddress. Your error is: Couldn't load RT config file RT_SiteConfig.pm:nnsyntax error at /opt/rt3/etc/RT_SiteConfig.pm line 146, near "'EmailAddress'"nCompilation failed in require at /opt/rt3/bin/../lib/RT/Config.pm line 562.nCompilation failed in require at (eval 2) line 1.n Try to make a configuration file without all the comments you have within the Authen:External008.. conf (delete all the #). You might be missing something. Best Regards, - Greetings Louis Despite your piece of good advice my Syntax is correct also, Cause i only used the # Sign to comment out the Lines which will apache2 get into trouble.If try to run normally the same issue appears. And in refer to the Readme .. you can also write: 'attr_match_list' => [ 'Name', 'EmailAddress', 'RealName', 'WorkPhone', 'Address2' ], the only important thing is to set the brackets correctly and this will benoticed if you try to restart apache So.. thats not the problem any other clue or idea? best regards john s. Message: 3 Date: Fri, 15 Apr 2011 02:26:11 -0700 (PDT) From: "john s." To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for Message-ID: Content-Type: text/plain; charset=us-ascii Greetings Louis Despite your piece of good advice my Syntax is correct also, Cause i only used the # Sign to comment out the Lines which will apache2 get into trouble.If try to run normally the same issue appears. And in refer to the Readme .. you can also write: 'attr_match_list' => [ 'Name', 'EmailAddress', 'RealName', 'WorkPhone', 'Address2' ], the only important thing is to set the brackets correctly and this will benoticed if you try to restart apache So.. thats not the problem any other clue or idea? best regards john s. -- View this message in context: Sent from the Request Tracker - User mailing list archive at Nabble.com.
Re: [rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for
Hi John, apparently your problem is this: 'attr_match_list' => [ 'Name', # 'EmailAddress', ], # 'attr_map' => { 'Name' => 'sAMAccountName', ... You have to ensure formatting correctly the list. For example: 'attr_match_list' => [ 'Name' ]... you are doing this: 'attr_match_list' => [ 'Name', In addition, check also attr_map. For example: 'attr_map' => { 'Name' => 'sAMAccountName', 'EmailAddress' => 'mail', 'RealName' => 'cn', 'WorkPhone' => 'telephoneNumber' } The error you are getting is that the SiteConfig is not correctly formed. Hope this helps, Best, Luis Avendaño Grupo Latinoamericano ACM Av. Venezuela Torre America, Piso 1 Ofic 116, Bello Monte. Caracas, Venezuela Phone: (+58) 212-763.4104 Fax: (+58) 212-763.1847 http://www.acmgrp.com USO DE CORREO ELECTRÓNICO DE ACM ** Este mensaje puede contener información únicamente de interés para ACM GROUP o sus negocios y es enviado solamente al destinatario designado, y puede contener información privilegiada, patentada o privada. La copia, distribución, revelación o cualquier uso de la información contenida en este mensaje es permitida solo a personas autorizadas. Si ha recibido este correo electrónico por error, por favor destruyalo y notifique inmediatamente a webmas...@acmgrp.com o al remitente ** ACM GROUP INTERNET E-MAIL USE *** This message may contain information solely of the interest of ACM or its businesses and is delivered for the designated recipient only and may containprivileged, proprietary, or otherwise privatetion. Copying, distribution, disclosure or any use of the information contained in this transmission is permitted only to authorized parties. If you have received this e-mail by error, please destroy it and notify webmas...@acmgrp.com or the sender immediately **
Re: [rt-users] RT-Authen-ExternalAuth-0.08 which packages i need for
Hi Jhon, Based on the Rt_SiteConfig piece you sent, there is a missing variable setting in your configuration. You put this: Set($AutoCreateNonExternalUsers, 0); 'My_LDAP' => { ## GENERIC . It should be like this: Set($ExternalSettings, { # AN EXAMPLE DB SERVICE 'My_LDAP' => In addition, based on the log you sent, you are also configuring My_SSO and My_MySQL. If you are not using these services to authenticate, please delete them from the RT_SiteConfig file. If you are using them I would recommend you going step by step. First configure the LDAP, then go for the next source This is an example of a working conf, using RT 3.8.9 and LDAP = Active Directory: #Set($WebExternalAuth, 1); #Set($WebExternalAuthContinuous, 1); #Set($WebExternalGecos , undef); #Set($WebExternalAuto , true); #Set($WebFallbackToInternalAuth , undef); Set($ExternalAuthPriority, [ 'My_LDAP' ]); Set($ExternalInfoPriority, ['My_LDAP']); Set($ExternalServiceUsesSSLorTLS,0); Set($AutoCreateNonExternalUsers,0); Set($ExternalSettings, { 'My_LDAP' => { ## GENERIC SECTION 'type' => 'ldap', 'server' => '***.***.***.***', 'user' => '*\*', 'pass' => '', 'base' => 'DC=*,DC=com,DC=ve', 'filter' => '(objectClass=*)', 'd_filter' => '(userAccountControl=514)', 'tls' => 0, 'net_ldap_args' => [version => 3 ], #'group' => 'GROUP_NAME', #'group_attr' => 'GROUP_ATTR', 'attr_match_list' => ['Name', 'EmailAddress' # 'RealName', # 'WorkPhone' ], 'attr_map' => { 'Name' => 'sAMAccountName', 'EmailAddress' => 'mail', 'RealName' => 'cn', 'WorkPhone' => 'telephoneNumber' } } } ); o Set( @Plugins, qw( RT::Authen::ExternalAuth ) ); Give a shot with this, and then get back with the resulted log file and final configuration. Hope this helps, Best, Luis Avendaño
Re: [rt-users] Problem on RT::Authen::ExternalAuth
Hi All, just fixed the problem. Apparently there is a bug on the ExternalAuth version I was using for RT 3.8.9. You need to download Got it from this post: Thanks anyway! Luis Avendaño On Tue 12/04/11 5:00 PM , "Luis Avendaño" lavend...@acmgrp.com sent: Hi, I have installed and configured the RT::Authen::ExternalAuth. My environment is: Solaris (sun4v sparc SUNW,Sun-Fire-T200), RT=3.8.9, BD= PostgreSQL=10.2, LDAP = Active Directory I realized that when I load the RT main page, I always get the following log, NOTHING ELSE RELATED TO ExternalAuth: *** [Tue Apr 12 21:05:15 2011] [debug]: Reloading RT::User to work around a bug in RT-3.8.0 and RT-3.8.1 (/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:14) [Tue Apr 12 21:05:28 2011] [debug]: Reloading RT::User to work around a bug in RT-3.8.0 and RT-3.8.1 (/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:14) [Tue Apr 12 21:05:52 2011] [debug]: Attempting to use external auth service: My_LDAP (/rt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:64) [Tue Apr 12 21:05:52 2011] [debug]: SSO Failed and no user to test with. Nexting (/rt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:92) [Tue Apr 12 21:05:52 2011] [debug]: Autohandler called ExternalAuth. Response: (0, No User) (/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:26) *** However, when a LDAP user tries to login, the following error is logged: *** [Tue Apr 12 21:05:06 2011] [error]: FAILED LOGIN for cdomi3 from 172.16.136.54 (/rt/rt3/bin/../lib/RT/Interface/Web.pm:555) *** Any user which was locally created in RT, is able to log in. The ExternalAuth related configuration is as follows: --- #Set($WebExternalAuth, 1); #Set($WebExternalAuthContinuous, 1); #Set($WebExternalAuto , true); Set($ExternalAuthPriority, [ 'My_LDAP' ] ); Set($ExternalInfoPriority, [ 'My_LDAP' ] ); Set($ExternalServiceUsesSSLorTLS, 0); Set($AutoCreateNonExternalUsers, 0); SOME LDAPP INFORMATION HAS BEEN MODIFIED (IP ADDRESS OF THE SERVER, DOMAINUSER', USERPASSWORD and DC=COMPANY). Set($ExternalSettings, { 'My_LDAP' => { ## GENERIC SECTION 'type' => 'ldap', 'server' => ' ', 'user' => ' ', 'pass' => '', 'base' => ' ,DC=com,DC=ve', 'filter' => '(objectClass=*)', 'd_filter' => '(userAccountControl=514)', 'tls' => 0, #'ssl_version' => 3, 'net_ldap_args' => [ version => 3 ], #'group' => 'GROUP_NAME', #'group_attr' => 'GROUP_ATTR', 'attr_match_list' => [ 'Name', 'EmailAddress' # 'RealName', # 'WorkPhone' ], 'attr_map' => { 'Name' => &
[rt-users] Problem on RT::Authen::ExternalAuth
Hi, I have installed and configured the RT::Authen::ExternalAuth. My environment is: Solaris (sun4v sparc SUNW,Sun-Fire-T200), RT=3.8.9, BD= PostgreSQL=10.2, LDAP = Active Directory I realized that when I load the RT main page, I always get the following log, NOTHING ELSE RELATED TO ExternalAuth: *** [Tue Apr 12 21:05:15 2011] [debug]: Reloading RT::User to work around a bug in RT-3.8.0 and RT-3.8.1 (/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:14) [Tue Apr 12 21:05:28 2011] [debug]: Reloading RT::User to work around a bug in RT-3.8.0 and RT-3.8.1 (/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:14) [Tue Apr 12 21:05:52 2011] [debug]: Attempting to use external auth service: My_LDAP (/rt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:64) [Tue Apr 12 21:05:52 2011] [debug]: SSO Failed and no user to test with. Nexting (/rt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:92) [Tue Apr 12 21:05:52 2011] [debug]: Autohandler called ExternalAuth. Response: (0, No User) (/rt/rt3/local/plugins/RT-Authen-ExternalAuth/html/Callbacks/ExternalAuth/autohandler/Auth:26) *** However, when a LDAP user tries to login, the following error is logged: *** [Tue Apr 12 21:05:06 2011] [error]: FAILED LOGIN for cdomi3 from 172.16.136.54 (/rt/rt3/bin/../lib/RT/Interface/Web.pm:555) *** Any user which was locally created in RT, is able to log in. The ExternalAuth related configuration is as follows: --- #Set($WebExternalAuth, 1); #Set($WebExternalAuthContinuous, 1); #Set($WebExternalAuto , true); Set($ExternalAuthPriority, [ 'My_LDAP' ] ); Set($ExternalInfoPriority, [ 'My_LDAP' ] ); Set($ExternalServiceUsesSSLorTLS, 0); Set($AutoCreateNonExternalUsers, 0); SOME LDAPP INFORMATION HAS BEEN MODIFIED (IP ADDRESS OF THE SERVER, DOMAINUSER', USERPASSWORD and DC=COMPANY). Set($ExternalSettings, { 'My_LDAP' => { ## GENERIC SECTION 'type' => 'ldap', 'server' => '', 'user' => '', 'pass' => '', 'base' => ',DC=com,DC=ve', 'filter' => '(objectClass=*)', 'd_filter' => '(userAccountControl=514)', 'tls' => 0, #'ssl_version' => 3, 'net_ldap_args' => [ version => 3 ], #'group' => 'GROUP_NAME', #'group_attr' => 'GROUP_ATTR', 'attr_match_list' => [ 'Name', 'EmailAddress' # 'RealName', # 'WorkPhone' ], 'attr_map' => { 'Name' => 'sAMAccountName', 'EmailAddress' => 'mail', 'RealName' => 'cn', 'WorkPhone' => 'telephoneNumber' } } } ); Set( @Plugins, qw( RT::Authen::ExternalAuth ) ); Set( %GnuPG, Enable => 0); I have done a lot of research, but no luck so far I really appreciate any help that you can provide me guys, Best Regards, Luis Avendaño