Re: [rt-users] error 401 Credentials required
If you need the groups assistance you would need a bit more information than does not work. On November 8, 2014 4:29:48 AM EST, Shahab Sharifzadeh sshgu...@ymail.com wrote: Does not work... -- Sent from my Android device with K-9 Mail. Please excuse my brevity.
Re: [rt-users] How to move an existing database to a new server
Vas, Not being familiar with Ubuntu so I don't know where your rt4 install directory is but on CentOS\RHEL it would be /opt/rt4 so I would run something like this: /opt/rt4/sbin/rt-setup-database --action upgrade I had a database from rt 3.8.6 build and similarly did a dump \ restore to rt 4.2.8 build. When running above command it asked me what version am I upgrading from and it ran the necessary updates. After running the upgrade command did you see something like the following: In order to create or update your RT database, this script needs to connect to your Pg instance on localhost (port '') as root Please specify that user's database password below. If the user has no database password, just press return. Password: Working with: Type: Pg Host: localhost Port: Name: rt4 User: rt_user DBA:root - Try setting your LogLevel to debug. I'm sure it will provide some helpful info. If you pass it along I'm confident somebody from the list can provide further assistance besides a RT newbie like myself : ) William Clarke ITS System Administrator Bard College at Simon's Rock 84 Alford Road Great Barrington, MA 01230 (413) 528-7428 (voice) (413) 528-7405 (fax) wcla...@simons-rock.edu On 10/21/2014 5:01 AM, Vas wrote: Hi all, I am trying to move an existing RT database (3.8.11) to a new server running 4.0.4. I have succesfully done a dump and scp and imported the database on the new server. When I log in to RT via the browser I can see the database but when I try to take a ticket I get the following error- Could not change owner: Couldn't add member to group Which I am assuming means that the database is actually not connected or something else needs to happen in the back end for it to work. I am using Ubuntu server 12.04.5 LTS on a vm machine. I do have a snapshot of the new server prior to importing the old database if other steps are required first prior to importing. I would be most grateful for any input. Having searched around on the internet I did try rt-setup-database --schema and upgrade with no result. Thank you Vas -- View this message in context:http://requesttracker.8502.n7.nabble.com/How-to-move-an-existing-database-to-a-new-server-tp58875.html Sent from the Request Tracker - User mailing list archive at Nabble.com. -- RT Training November 4 5 Los Angeles http://bestpractical.com/training
Re: [rt-users] porting over Asset Tracker info to a new instance
Joop, Thank you very much for your reply. In case it's of any help, here are logs when I set database to rt3 and assign Plugin( RTx::AssetTracker ); Let me know if there is any other info you might need to give me some direction on getting AT3.0 up and running. I'm also going to try to get some usable tables dumped from postgresql just to try another approach Oct 15 10:59:15 rt4 RT: [21451] Use of inherited AUTOLOAD for non-method RT::System::AddRights() is deprecated at /opt/rt4/local/plugins/RTx-AssetTracker/lib/RTx/AssetTracker/Type.pm line 114, DATA line 751. Oct 15 10:59:15 rt4 RT: [21451] Can't locate object method _Accessible via package DeleteAsset (perhaps you forgot to load DeleteAsset?) at /usr/local/share/perl5/DBIx/SearchBuilder/Record.pm line 422, DATA line 751. Compilation failed in require at /opt/rt4/local/plugins/RTx-AssetTracker/lib/RTx/AssetTracker/Types.pm line 70, DATA line 751. BEGIN failed--compilation aborted at /opt/rt4/local/plugins/RTx-AssetTracker/lib/RTx/AssetTracker/Types.pm line 70, DATA line 751. Compilation failed in require at /opt/rt4/local/plugins/RTx-AssetTracker/lib/RTx/AssetTracker.pm line 56, DATA line 751. BEGIN failed--compilation aborted at /opt/rt4/local/plugins/RTx-AssetTracker/lib/RTx/AssetTracker.pm line 56, DATA line 751. Compilation failed in require at /opt/rt4/sbin/../lib/RT.pm line 729, DATA line 751. William Clarke ITS System Administrator Bard College at Simon's Rock 84 Alford Road Great Barrington, MA 01230 (413) 528-7428 (voice) (413) 528-7405 (fax) wcla...@simons-rock.edu On 10/16/2014 7:33 AM, Joop wrote: On 15-10-2014 20:08, William Clarke wrote: RT, Little more info... I have migrated\updated rt3 database to a fresh install of rt4.2.8. So I can bounce back and forth between rt3 database and rt4 database with $DatabaseName in RT_SiteConfig.pm. rt4 database has RT::Extension::Assets plugin working however the tables (rtxassets, rtxassets_id_seq, rtxcatalogs, rtxcatalogs_id_seq) aren't populated due to this being a fresh database. old rt3 build\database on the other hand had RTx::AssetTracker installed so it has the following tables\sequences that rt4 does not (at_assets, at_assets_id_seq, at_ips, at_ips_id_seq, at_ports, at_ports_id_seq, at_types, at_types_id_seq) My plan of attack: - generate for all assettypes a seperate rt_config.pm which maps the CustomFields to the right Catalogs - generate a search to export each assettype to a csv file - import using the RT::Assets import tool to import them maintaining the ids - write a small perl script to walk all tickets,articles,old_assets looking for links to old_assets and relink them to the new_assets. - drop the old tables. In concept this should work I think but I'm open to better ways todo this since its error prone and a lot of work. Installing AT3.0 has given me some issues with both rt3 and rt4 database. It appears it's no longer supportd after rt4.0.0. We were hoping you guys could shed some light on this for us. How can we migrate our old Asset Tracker data into rt4 database or maybe get rt3 database fully functional on 4.2.8. Had the same problem and 'fixed' that in testing by looking at the error and where it was generated. From memory it was about a CustomField type of thing. Joop -- RT Training November 4 5 Los Angeles http://bestpractical.com/training
Re: [rt-users] porting over Asset Tracker info to a new instance
RT, Little more info... I have migrated\updated rt3 database to a fresh install of rt4.2.8. So I can bounce back and forth between rt3 database and rt4 database with $DatabaseName in RT_SiteConfig.pm. rt4 database has RT::Extension::Assets plugin working however the tables (rtxassets, rtxassets_id_seq, rtxcatalogs, rtxcatalogs_id_seq) aren't populated due to this being a fresh database. old rt3 build\database on the other hand had RTx::AssetTracker installed so it has the following tables\sequences that rt4 does not (at_assets, at_assets_id_seq, at_ips, at_ips_id_seq, at_ports, at_ports_id_seq, at_types, at_types_id_seq) Installing AT3.0 has given me some issues with both rt3 and rt4 database. It appears it's no longer supportd after rt4.0.0. We were hoping you guys could shed some light on this for us. How can we migrate our old Asset Tracker data into rt4 database or maybe get rt3 database fully functional on 4.2.8. Thanks, Willie William Clarke ITS System Administrator Bard College at Simon's Rock 84 Alford Road Great Barrington, MA 01230 (413) 528-7428 (voice) (413) 528-7405 (fax) wcla...@simons-rock.edu On 10/13/2014 4:29 PM, charlie derr wrote: Greetings, We've been using RT for several years and have a lot of data inside our old instance (which is running RT 3.8.4 with the Asset Tracker module). My colleague Will has done some good work with spinning up a new version (and with the help of the list getting it integrated with our LDAP) which is running 4.2.8. Both the new and the old are running off of postgres underneath. Does anyone have any advice about how we can most efficiently migrate over our custom asset types and asset information into the new version? thanks so much in advance, ~c -- RT Training November 4 5 Los Angeles http://bestpractical.com/training
Re: [rt-users] Help - RT4.2.7 Authen::ExternalAuth via, OpenLDAP
/Authen/ExternalAuth/LDAP.pm:437) [3298] [Tue Oct 7 15:40:08 2014] [debug]: LDAP Search === Base: dc=simons-rock,dc=edu == Filter: ((objectClass=*)(uid=wclarke)) == Attrs: mail,uid (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:467) [3298] [Tue Oct 7 15:40:08 2014] [warning]: Use of uninitialized value $d_filter in string eq at /opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm line 523. (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:523) [3298] [Tue Oct 7 15:40:08 2014] [debug]: No d_filter specified for this LDAP service ( My_LDAP ), so considering all users enabled (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:527) [3298] [Tue Oct 7 15:40:08 2014] [debug]: RT::Authen::ExternalAuth::CanonicalizeUserInfo called by RT::Authen::ExternalAuth /opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm 860 with: Name: wclarke (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:757) [3298] [Tue Oct 7 15:40:08 2014] [debug]: Attempting to get user info using this external service: My_LDAP (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:765) [3298] [Tue Oct 7 15:40:08 2014] [debug]: Attempting to use this canonicalization key: Name (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:779) [3298] [Tue Oct 7 15:40:08 2014] [debug]: LDAP Search === Base: dc=simons-rock,dc=edu == Filter: ((objectClass=*)(uid=wclarke)) == Attrs: mail,uid (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:355) [3298] [Tue Oct 7 15:40:08 2014] [info]: RT::Authen::ExternalAuth::CanonicalizeUserInfo returning EmailAddress: wcla...@simons-rock.edu, Name: wclarke, RealName: (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:843) [3298] [Tue Oct 7 15:40:08 2014] [debug]: UPDATED user ( wclarke ) from External Service (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:614) [3298] [Tue Oct 7 15:40:08 2014] [info]: Successful login for wclarke from 10.30.2.210 (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:526) [3298] [Tue Oct 7 15:40:08 2014] [debug]: Autohandler called ExternalAuth. Response: (1, Successful login) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:16) William Clarke ITS System Administrator Bard College at Simon's Rock 84 Alford Road Great Barrington, MA 01230 (413) 528-7428 (voice) (413) 528-7405 (fax) wcla...@simons-rock.edu On 10/7/2014 10:46 AM, Kevin Falcone wrote: On Mon, Oct 06, 2014 at 02:34:40PM -0400, William Clarke wrote: RT 4.2.7 and RT-Authen-ExternalAuth-0.23 0.23 or 0.23_01 the dev release? Your log points to line 491 [29370] [Mon Oct 6 18:20:02 2014] [error]: Couldn't create user wclarke: Could not set user info (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ ExternalAuth.pm:491) But line 491 of 0.23 is blank https://github.com/bestpractical/rt-authen-externalauth/blob/5a3a85c36f2e0abc43a0b0483b6e01e4d390ec54/lib/RT/Authen/ExternalAuth.pm#L491 Line 491 of 0.23_01 has an error message there https://github.com/bestpractical/rt-authen-externalauth/blob/master/lib/RT/Authen/ExternalAuth.pm#L491 So, let's nail down what you're actually running, since you may just have tripped a bug in 0.23_01 if that's what you have installed. BTW - is there a reason you've only configured Auth and not Info? That's probably making it very hard for RT to create the user, since it can't go fetch any info. -kevin -- RT Training November 4 5 Los Angeles http://bestpractical.com/training
Re: [rt-users] Help - RT4.2.7 Authen::ExternalAuth via, OpenLDAP
10.30.2.210 (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:581) [3696] [Tue Oct 7 16:33:47 2014] [debug]: Autohandler called ExternalAuth. Response: (1, Successful login) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:16) William Clarke ITS System Administrator Bard College at Simon's Rock 84 Alford Road Great Barrington, MA 01230 (413) 528-7428 (voice) (413) 528-7405 (fax) wcla...@simons-rock.edu On 10/7/2014 12:21 PM, Kevin Falcone wrote: On Tue, Oct 07, 2014 at 11:46:57AM -0400, William Clarke wrote: Ouch, I apologize I missed that. I was initially using .23 release but then later installed the latest dev .23_01 in hopes all my problems would vanish. Well just reinstalled .23 just now and the logs I'm seeing might be a little more interesting to us all. Oh and it really helps when I add the following as you suggested, I didn't leave that out intentionally Set( $ExternalInfoPriority, [My_LDAP] ); External Auth is working like a charm now so THANK YOU KEVIN! If you have cycles, would you confirm that 0.23_01 works too now that you've added in the InfoPriority line? It'll help us be more confident eventually releasing that as 0.24. Thanks -kevin -- RT Training November 4 5 Los Angeles http://bestpractical.com/training
Re: [rt-users] RV: Trouble with External Authenticathion
Jonathan, Have you reviewed the README file? It provides some examples for configuring RT_SiteConfig.pm. I just recently got my External Auth up and running this morning with some assistance from this group so I'm trying to pay it forward: ). Maybe this will help: http://search.cpan.org/dist/RT-Authen-ExternalAuth/ but if not I imagine sending rt-users@lists.bestpractical.com your External Auth settings from RT_SiteConfig.pm along with error logs set to DEBUG would be quite useful. Thanks, William Clarke ITS System Administrator Bard College at Simon's Rock On 10/7/2014 1:39 PM, Jonathan Vindas wrote: Good morning, I write this email because I installed Request Tracker 4.2.1 succesfully but I have a trouble with external authentication. I investigate about RT::Authen::ExternalAuth plugin homewever when I try to compile RT_SiteConfig.pm throws some errors. I think the reasons about my issues are my RT_SiteConfig. pm params not be correct. We are confused with parameters of RT::Authen::ExternalAuth. If you can explain each param relationated with ExternalAuth or provide an example RT_SiteConfig.pm. Thanks DescripciĆ³n: firmaCorreoGANSA Jonathan Vindas Abarca Grupo Agroindustrial Numar Programador AX Tel: 2284 - 1489 -- RT Training November 4 5 Los Angeles http://bestpractical.com/training
Re: [rt-users] Help - RT4.2.7 Authen::ExternalAuth via, OpenLDAP
Thank you very much for the response Kevin. RT 4.2.7 and RT-Authen-ExternalAuth-0.23 I triple-checked and this is surely my RT_SiteConfig.pm file and as you saw yes, the logs to definitely show it's populating the Gecos field when not requested and not populating the EmailAddress field. Please see RT debug logs below: Set( $ExternalAuthPriority, [My_LDAP] ); Set( $ExternalAuthInfo, [My_LDAP] ); Set( $ExternalSettings, { 'My_LDAP' = { 'type' = 'ldap', 'server'= 'ldap2.simons-rock.edu', 'base' = 'dc=simons-rock,dc=edu', 'filter'= '(objectClass=*)', 'attr_match_list' = [ 'Name', 'EmailAddress', ], 'attr_map' = { 'Name' = 'uid', 'EmailAddress' = 'mail', }, }, } ); # You must install Plugins on your own, this is only an example # of the correct syntax to use when activating them: # Plugin( RT::Extension::SLA ); # Plugin( RT::Authen::ExternalAuth ); Plugin( RT::Authen::ExternalAuth ); # Plugin( RT::Extension::Assets ); # plugin( RT::Extension::Assets::Import::CSV ); 1; [29370] [Mon Oct 6 18:20:02 2014] [debug]: Attempting to use external auth service: My_LDAP (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:424) [29370] [Mon Oct 6 18:20:02 2014] [debug]: Calling UserExists with $username (wclarke) and $service (My_LDAP) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:465) [29370] [Mon Oct 6 18:20:02 2014] [debug]: UserExists params: username: wclarke , service: My_LDAP (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:439) [29370] [Mon Oct 6 18:20:02 2014] [debug]: LDAP Search === Base: dc=simons-rock,dc=edu == Filter: ((objectClass=*)(uid=wclarke)) == Attrs: uid,mail (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:469) [29370] [Mon Oct 6 18:20:02 2014] [debug]: RT::Authen::ExternalAuth::CanonicalizeUserInfo called by RT::Authen::ExternalAuth /opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm 885 with: Disabled: , EmailAddress: , Gecos: wclarke, Name: wclarke, Privileged: (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:792) [29370] [Mon Oct 6 18:20:02 2014] [info]: RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Disabled: , EmailAddress: , Gecos: wclarke, Name: wclarke, Privileged: (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:868) [29370] [Mon Oct 6 18:20:02 2014] [error]: Couldn't create user wclarke: Could not set user info (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:491) [29370] [Mon Oct 6 18:20:02 2014] [debug]: Autohandler called ExternalAuth. Response: (0, No User) (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:16) [29370] [Mon Oct 6 18:20:02 2014] [error]: FAILED LOGIN for wclarke from 10.30.2.210 (/opt/rt4/sbin/../lib/RT/Interface/Web.pm:810) Message: 4 Date: Mon, 6 Oct 2014 11:51:42 -0400 From: Kevin Falconefalc...@bestpractical.com To:rt-users@lists.bestpractical.com Subject: Re: [rt-users] Help - RT4.2.7 Authen::ExternalAuth via OpenLDAP Message-ID:20141006155142.gj2...@jibsheet.com Content-Type: text/plain; charset=iso-8859-1 On Fri, Oct 03, 2014 at 01:50:54PM -0400, William Clarke wrote: A little more info after checking rt4 logs: Oct? 3 10:20:16 rtracker6 RT: [16022] RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Disabled: , EmailAddress: , Gecos: wclarke, Name: wclarke, Privileged: Oct? 3 10:20:16 rtracker6 RT: [16022] Couldn't create user wclarke: Could not set user info Oct? 3 10:20:16 rtracker6 RT: [16022] FAILED LOGIN for wclarke from 10.30.2.210 These are the more useful logs. You should ensure you have your logs set to debug and show the preceding lines which are important. I find it suspicious that it didn't return an email address, but did return a Gecos. Implies your configuration is not what you sent to the list. You should also say your RT and RT-Authen-ExternalAuth versions explicitly. -kevin -- William Clarke ITS System Administrator Bard College at Simon's Rock 84 Alford Road Great Barrington, MA 01230 (413) 528-7428 (voice) (413) 528-7405 (fax) wcla...@simons-rock.edu -- RT Training November 4 5 Los Angeles http://bestpractical.com/training
Re: [rt-users] Help - RT4.2.7 Authen::ExternalAuth via OpenLDAP
Sorry, I sent that a little prematurely. RT shows your username or password is incorrect : ( On 10/3/2014 10:58 AM, William Clarke wrote: Hi all, CentOS6.5 \ Apache 2.2.15 \ Perl 5.18.2 \ MariaDB 5.5.39 I followed these instructions for my RT build: http://binarynature.blogspot.pt/2013/05/install-request-tracker-4.html I'm very new to RT. I've read up what I could find on CPAN, wiki and Google and I'm not quite sure which way to go here. RT is connecting to our ldap and a search result is found but the logs in ldap show closed (connection lost) so I suspect RT isn't seeing\getting the response back from LDAP. I have some examples below showing RT's LDAP requests with logs as well as the same search run via command line. The main differences I can see in logs so far is command line test sends scope=2 deref=0 vs RT test scope=2 deref=2 and also that the RT test doesn't unbind and the connection is lost. Command line: ldapsearch -x -p 389 -h ldap.simons-rock.edu -b ou=People,dc=simons-rock,dc=edu (((uid=*))(uid=wclarke)) mail uid # extended LDIF # # LDAPv3 # base ou=People,dc=simons-rock,dc=edu with scope subtree # filter: (((uid=*))(uid=wclarke)) # requesting: mail uid # # wclarke, People, simons-rock.edu dn: uid=wclarke,ou=People,dc=simons-rock,dc=edu uid: wclarke mail: wcla...@simons-rock.edu # search result search: 2 result: 0 Success # numResponses: 2 # numEntries: 1 --- Logs from ldap via command line - loglevel 256 --- Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 fd=19 ACCEPT from IP=10.30.2.36:51249 (IP=0.0.0.0:389) Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=0 BIND dn= method=128 Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=0 RESULT tag=97 err=0 text= Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=1 SRCH base=ou=People,dc=simons-rock,dc=edu scope=2 deref=0 filter=(((uid=*))(uid=wclarke)) Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=1 SRCH attr=mail uid Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text= Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=2 UNBIND Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 fd=19 closed --- Logs from ldap when logging into RT - loglevel 256 --- Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 fd=19 ACCEPT from IP=10.30.2.36:51262 (IP=0.0.0.0:389) Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=0 BIND dn= method=128 Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=0 RESULT tag=97 err=0 text= Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=1 SRCH base=ou=People,dc=simons-rock,dc=edu scope=2 deref=2 filter=(((uid=*))(uid=wclarke)) Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=1 SRCH attr=uid mail Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text= Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 fd=19 closed (connection lost) --- External Settings from: RT_SiteConfig.pm --- Set( $ExternalSettings, { 'My_LDAP' = { 'type' = 'ldap', 'server'= 'ldap2.simons-rock.edu', 'base' = 'ou=People,dc=simons-rock,dc=edu', 'filter'= '(objectClass=*)', 'net_ldap_args' = [version = 3 ], 'attr_match_list' = [ 'Name', 'EmailAddress', ], 'attr_map' = { 'Name' = 'uid', 'EmailAddress' = 'mail', }, }, } ); # You must install Plugins on your own, this is only an example # of the correct syntax to use when activating them: # Plugin( RT::Extension::SLA ); # Plugin( RT::Authen::ExternalAuth ); Plugin( RT::Authen::ExternalAuth ); # Plugin( RT::Extension::Assets ); # plugin( RT::Extension::Assets::Import::CSV ); 1; -- William Clarke ITS System Administrator Bard College at Simon's Rock 84 Alford Road Great Barrington, MA 01230 (413) 528-7428 (voice) (413) 528-7405 (fax) wcla...@simons-rock.edu -- RT Training November 4 5 Los Angeles http://bestpractical.com/training
[rt-users] Help - RT4.2.7 Authen::ExternalAuth via OpenLDAP
Hi all, CentOS6.5 \ Apache 2.2.15 \ Perl 5.18.2 \ MariaDB 5.5.39 I followed these instructions for my RT build: http://binarynature.blogspot.pt/2013/05/install-request-tracker-4.html I'm very new to RT. I've read up what I could find on CPAN, wiki and Google and I'm not quite sure which way to go here. RT is connecting to our ldap and a search result is found but the logs in ldap show closed (connection lost) so I suspect RT isn't seeing\getting the response back from LDAP. I have some examples below showing RT's LDAP requests with logs as well as the same search run via command line. The main differences I can see in logs so far is command line test sends scope=2 deref=0 vs RT test scope=2 deref=2 and also that the RT test doesn't unbind and the connection is lost. Command line: ldapsearch -x -p 389 -h ldap.simons-rock.edu -b ou=People,dc=simons-rock,dc=edu (((uid=*))(uid=wclarke)) mail uid # extended LDIF # # LDAPv3 # base ou=People,dc=simons-rock,dc=edu with scope subtree # filter: (((uid=*))(uid=wclarke)) # requesting: mail uid # # wclarke, People, simons-rock.edu dn: uid=wclarke,ou=People,dc=simons-rock,dc=edu uid: wclarke mail: wcla...@simons-rock.edu # search result search: 2 result: 0 Success # numResponses: 2 # numEntries: 1 --- Logs from ldap via command line - loglevel 256 --- Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 fd=19 ACCEPT from IP=10.30.2.36:51249 (IP=0.0.0.0:389) Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=0 BIND dn= method=128 Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=0 RESULT tag=97 err=0 text= Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=1 SRCH base=ou=People,dc=simons-rock,dc=edu scope=2 deref=0 filter=(((uid=*))(uid=wclarke)) Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=1 SRCH attr=mail uid Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text= Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=2 UNBIND Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 fd=19 closed --- Logs from ldap when logging into RT - loglevel 256 --- Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 fd=19 ACCEPT from IP=10.30.2.36:51262 (IP=0.0.0.0:389) Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=0 BIND dn= method=128 Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=0 RESULT tag=97 err=0 text= Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=1 SRCH base=ou=People,dc=simons-rock,dc=edu scope=2 deref=2 filter=(((uid=*))(uid=wclarke)) Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=1 SRCH attr=uid mail Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text= Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 fd=19 closed (connection lost) --- External Settings from: RT_SiteConfig.pm --- Set( $ExternalSettings, { 'My_LDAP' = { 'type' = 'ldap', 'server'= 'ldap2.simons-rock.edu', 'base' = 'ou=People,dc=simons-rock,dc=edu', 'filter'= '(objectClass=*)', 'net_ldap_args' = [version = 3 ], 'attr_match_list' = [ 'Name', 'EmailAddress', ], 'attr_map' = { 'Name' = 'uid', 'EmailAddress' = 'mail', }, }, } ); # You must install Plugins on your own, this is only an example # of the correct syntax to use when activating them: # Plugin( RT::Extension::SLA ); # Plugin( RT::Authen::ExternalAuth ); Plugin( RT::Authen::ExternalAuth ); # Plugin( RT::Extension::Assets ); # plugin( RT::Extension::Assets::Import::CSV ); 1; -- William Clarke ITS System Administrator Bard College at Simon's Rock 84 Alford Road Great Barrington, MA 01230 (413) 528-7428 (voice) (413) 528-7405 (fax) wcla...@simons-rock.edu -- RT Training November 4 5 Los Angeles http://bestpractical.com/training
Re: [rt-users] Help - RT4.2.7 Authen::ExternalAuth via OpenLDAP
A little more info after checking rt4 logs: Oct 3 10:20:16 rtracker6 RT: [16022] RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Disabled: , EmailAddress: , Gecos: wclarke, Name: wclarke, Privileged: Oct 3 10:20:16 rtracker6 RT: [16022] Couldn't create user wclarke: Could not set user info Oct 3 10:20:16 rtracker6 RT: [16022] FAILED LOGIN for wclarke from 10.30.2.210 On 10/3/2014 11:06 AM, William Clarke wrote: Sorry, I sent that a little prematurely. RT shows your username or password is incorrect : ( On 10/3/2014 10:58 AM, William Clarke wrote: Hi all, CentOS6.5 \ Apache 2.2.15 \ Perl 5.18.2 \ MariaDB 5.5.39 I followed these instructions for my RT build: http://binarynature.blogspot.pt/2013/05/install-request-tracker-4.html I'm very new to RT. I've read up what I could find on CPAN, wiki and Google and I'm not quite sure which way to go here. RT is connecting to our ldap and a search result is found but the logs in ldap show closed (connection lost) so I suspect RT isn't seeing\getting the response back from LDAP. I have some examples below showing RT's LDAP requests with logs as well as the same search run via command line. The main differences I can see in logs so far is command line test sends scope=2 deref=0 vs RT test scope=2 deref=2 and also that the RT test doesn't unbind and the connection is lost. Command line: ldapsearch -x -p 389 -h ldap.simons-rock.edu -b ou=People,dc=simons-rock,dc=edu (((uid=*))(uid=wclarke)) mail uid # extended LDIF # # LDAPv3 # base ou=People,dc=simons-rock,dc=edu with scope subtree # filter: (((uid=*))(uid=wclarke)) # requesting: mail uid # # wclarke, People, simons-rock.edu dn: uid=wclarke,ou=People,dc=simons-rock,dc=edu uid: wclarke mail: wcla...@simons-rock.edu # search result search: 2 result: 0 Success # numResponses: 2 # numEntries: 1 --- Logs from ldap via command line - loglevel 256 --- Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 fd=19 ACCEPT from IP=10.30.2.36:51249 (IP=0.0.0.0:389) Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=0 BIND dn= method=128 Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=0 RESULT tag=97 err=0 text= Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=1 SRCH base=ou=People,dc=simons-rock,dc=edu scope=2 deref=0 filter=(((uid=*))(uid=wclarke)) Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=1 SRCH attr=mail uid Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text= Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 op=2 UNBIND Oct 3 09:59:05 ldap2 slapd[1466]: conn=355216 fd=19 closed --- Logs from ldap when logging into RT - loglevel 256 --- Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 fd=19 ACCEPT from IP=10.30.2.36:51262 (IP=0.0.0.0:389) Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=0 BIND dn= method=128 Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=0 RESULT tag=97 err=0 text= Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=1 SRCH base=ou=People,dc=simons-rock,dc=edu scope=2 deref=2 filter=(((uid=*))(uid=wclarke)) Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=1 SRCH attr=uid mail Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text= Oct 3 10:00:43 ldap2 slapd[1466]: conn=355234 fd=19 closed (connection lost) --- External Settings from: RT_SiteConfig.pm --- Set( $ExternalSettings, { 'My_LDAP' = { 'type' = 'ldap', 'server'= 'ldap2.simons-rock.edu', 'base' = 'ou=People,dc=simons-rock,dc=edu', 'filter'= '(objectClass=*)', 'net_ldap_args' = [version = 3 ], 'attr_match_list' = [ 'Name', 'EmailAddress', ], 'attr_map' = { 'Name' = 'uid', 'EmailAddress' = 'mail', }, }, } ); # You must install Plugins on your own, this is only an example # of the correct syntax to use when activating them: # Plugin( RT::Extension::SLA ); # Plugin( RT::Authen::ExternalAuth ); Plugin( RT::Authen::ExternalAuth ); # Plugin( RT::Extension::Assets ); # plugin( RT::Extension::Assets::Import::CSV ); 1; -- William Clarke ITS System