Hi,
I just left that there for reference, but it is removed now.. almost there,
When I log in with an active directory user now i am getting this in the RT.log
[Thu Apr 3 13:19:43 2008] [debug]: Attempting to use external auth
service: My_LDAP
(/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:63)
[Thu Apr 3 13:19:48 2008] [critical]: RT::User::_GetBoundLdapObj :
Cannot connect to albex.albyn.local
(/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:1026)
[Thu Apr 3 13:19:48 2008] [info]: RT::User::IsExternalPassword
External Auth Failed: fjones
(/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:294)
[Thu Apr 3 13:19:48 2008] [debug]: RT::User::IsPassword External auth
FAILED (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:360)
[Thu Apr 3 13:19:48 2008] [info]: RT::User::IsInternalPassword AUTH
FAILED (no passwd): fjones
(/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:305)
[Thu Apr 3 13:19:48 2008] [debug]: RT::User::IsPassword Internal auth
FAILED (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:366)
albex being the server that active directory is on and albyn.local being the
domain,
my ldap settings are :
{ # AN EXAMPLE LDAP SERVICE
'My_LDAP' => { ## GENERIC SECTION
# The type of service
(db/ldap/cookie)
'type'
=> 'ldap',
# Should the service be
used for authentication?
'auth'
=> 1,
# Should the service be
used for information?
'info'
=> 1,
# The server hosting
the service
'server'
=> 'albex.albyn.local',
## SERVICE-SPECIFIC
SECTION
# The LDAP search base
'base'
=> 'ou=aber,dc=albyn,dc=local',
# The filter to use to
match RT-Users
'filter'
=> '(FILTER_STRING)',
# The filter that will
only match disabled users
'd_filter'
=> '(FILTER_STRING)',
# Should we try to use
TLS to encrypt connections?
'tls'
=> 0,
# What other args
should I pass to Net::LDAP->new($host,@args)?
'net_ldap_args'
=> [ version => 3 ],
# Does authentication
depend on group membership? What group name?
'group'
=> 'GROUP_NAME',
# What is the attribute
for the group object that determines membership?
'group_attr'
=> 'GROUP_ATTR',
## RT ATTRIBUTE
MATCHING SECTION
# The list of RT
attributes that uniquely identify a user
'attr_match_list'
=> [ 'Name',
'EmailAddress',
'RealName',
'WorkPhone',
'Address2'
],
# The mapping of RT
attributes on to LDAP attributes
'attr_map'
=> { 'Name' => 'sAMAccountName',
'EmailAddress' => 'mail',
'Organization' => 'physicalDeliveryOfficeName',
'RealName' => 'cn',
'ExternalAuthId' => 'sAMAccountName',
'Gecos' => 'sAMAccountName',
'WorkPhone' => 'telephoneNumber',
'Address1' => 'streetAddress',
'City' => 'l',
'State' => 'st',
'Zip' => 'postalCode',
'Country' => 'co'
}
}
}
Thanks for the help,
It is much appreciated I am quite new to all of this!
Andy
> Date: Thu, 3 Apr 2008 14:03:58 +0100
> From: [EMAIL PROTECTED]
> To: [EMAIL PROTECTED]; [email protected]
> Subject: Re: [rt-users] LDAP
>
> andrew fay wrote:
> > Hi Mike,
> >
> > I have installed the ExternalAuth extention,
> >
> > I now get this error on trying to log in :
> >
> > What do you think ?
>
> It would appear that you haven't modified the ExternalSettings from the
> default.
>
> You need to remove the example MySQL configuration.
>
> --
> Kind Regards,
>
> __________________________________________________
>
> Mike Peachey, IT
> Tel: +44 114 281 2655
> Fax: +44 114 281 2951
> Jennic Ltd, Furnival Street, Sheffield, S1 4QT, UK
> Comp Reg No: 3191371 - Registered In England
> http://www.jennic.com
> __________________________________________________
_________________________________________________________________
Get Hotmail on your mobile. Text MSN to 63463 now!
http://mobile.uk.msn.com/pc/mail.aspx_______________________________________________
http://lists.bestpractical.com/cgi-bin/mailman/listinfo/rt-users
Community help: http://wiki.bestpractical.com
Commercial support: [EMAIL PROTECTED]
Discover RT's hidden secrets with RT Essentials from O'Reilly Media.
Buy a copy at http://rtbook.bestpractical.com
