Hello rt-users,
So, I've implemented a Google Sign In flow into Request Tracker with
WebRemoteUserAuth enabled and an Apache module called mod_auth_openidc. Now,
I'd like to access RT's REST API with an account authenticated through the
external flow. Since these accounts don't have a
...@lists.bestpractical.com
[mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Bryon Baker
Sent: Tuesday, June 25, 2013 4:26 PM
To: rt-users@lists.bestpractical.com
Subject: Re: [rt-users] External Authentication
I change the dbi_Driver option to ODBC. Now I get the following error
[Tue Jun 25 21:21:29 2013
...@lists.bestpractical.com] On Behalf Of Bryon Baker
Sent: Wednesday, June 26, 2013 9:50 AM
To: rt-users@lists.bestpractical.com
Subject: Re: [rt-users] External Authentication
I am pretty sure the issue is with the install for the unixodbc and Freetds see
output below.
linux-jrlt:/usr/bin/gcc # odbcinst -q -d [FreeTDS
-users-boun...@lists.bestpractical.com] On Behalf Of Bryon Baker
Sent: Wednesday, June 26, 2013 10:39 AM
To: rt-users@lists.bestpractical.com
Subject: Re: [rt-users] External Authentication
Update
I uninstall FreeTDS and UnixODBC, then install FreeTDS first and then UnixODBC
and edited the ini files
...@lists.bestpractical.com
[mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Bryon Baker
Sent: Wednesday, June 26, 2013 11:04 AM
To: rt-users@lists.bestpractical.com
Subject: Re: [rt-users] External Authentication
When the DBI_Driver string = SQLServer I get the following error..
[Wed Jun 26 15:48:22 2013
On 06/26/2013 10:03 AM, Bryon Baker wrote:
Update
Working with the first error I created a SQLServer.pm with the correct
connect string. (I tested using Perl).
Now I get this error.
DBD::SQLServer initialisation failed: Can't locate object method driver via
package DBD::SQLServer at
-Original Message-
From: rt-users-boun...@lists.bestpractical.com
[mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Thomas Sibley
Sent: Wednesday, June 26, 2013 12:21 PM
To: rt-users@lists.bestpractical.com
Subject: Re: [rt-users] External Authentication
On 06/26/2013 10:03 AM, Bryon
On 06/26/2013 10:25 AM, Bryon Baker wrote:
I agree Thomas.
As stated before I have the correct information and setup for the
ODBC drivers I have tested this with isql and tsql and I wrote a
quick perl scrip to test the connection string and that works.
What I can's figure out is what
: Wednesday, June 26, 2013 1:32 PM
To: rt-users@lists.bestpractical.com
Subject: Re: [rt-users] External Authentication
On 06/26/2013 10:25 AM, Bryon Baker wrote:
I agree Thomas.
As stated before I have the correct information and setup for the ODBC
drivers I have tested this with isql and tsql
Sibley
Sent: Wednesday, June 26, 2013 1:32 PM
To: rt-users@lists.bestpractical.com
Subject: Re: [rt-users] External Authentication
On 06/26/2013 10:25 AM, Bryon Baker wrote:
I agree Thomas.
As stated before I have the correct information and setup for the ODBC
drivers I have tested this with isql
...@lists.bestpractical.com] On Behalf Of Bryon Baker
Sent: Wednesday, June 26, 2013 2:10 PM
To: rt-users@lists.bestpractical.com
Subject: Re: [rt-users] External Authentication
This is the Perl connect string that I test and works.
DBI-connect(dbi:ODBC:Driver=SQLServer;DSN=SQLServer;UID=UserID;PWD=pas
Has anyone configures RT to authenticate against MSSQL using SHA1 or SHA256?
If so, can someone post some sample configs?
Thanks in advance for the help.
--
View this message in context:
http://requesttracker.8502.n7.nabble.com/External-Authentication-tp54436.html
Sent from the Request
Here is an update
Config being used.
#Testing SQL Connection
'Connect_MSSQL' = { ## GENERIC SECTION
'type' = 'db',
'server'= '192.168.***.***,
'database' = 'TheDataBase',
'table'
On 06/25/2013 01:39 PM, bba...@copesan.com wrote:
'Connect_MSSQL' = { ## GENERIC SECTION
Typo. Compare above to message below.
[Tue Jun 25 20:32:34 2013] [debug]: Invalid service type for UserExists:
Connect__MSSQL
On 06/25/2013 01:45 PM, Bryon Baker wrote:
Not a typo
I am trying to us a Microsoft SQL database not MySQL.
Please keep replies on the list.
And look more closely at what you typed. One has a single underscore,
the other two. I know you're using MSSQL not MySQL.
...@lists.bestpractical.com] On Behalf Of Thomas Sibley
Sent: Tuesday, June 25, 2013 3:48 PM
To: RT Users
Subject: Re: [rt-users] External Authentication
On 06/25/2013 01:45 PM, Bryon Baker wrote:
Not a typo
I am trying to us a Microsoft SQL database not MySQL.
Please keep replies on the list
On 06/25/2013 02:05 PM, Bryon Baker wrote:
Sorry I screwed on both.
Made change and now I get the following messages. LDAP works by the way.
[Tue Jun 25 20:58:13 2013] [debug]: Attempting to use external auth service:
Connect_MSSQL
[mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Thomas Sibley
Sent: Tuesday, June 25, 2013 4:12 PM
To: rt-users@lists.bestpractical.com
Subject: Re: [rt-users] External Authentication
On 06/25/2013 02:05 PM, Bryon Baker wrote:
Sorry I screwed on both.
Made change and now I get
Hi,
This file only contains an example, this config isn't used for RT:
/opt/rt4/local/plugins/RT-Authen-ExternalAuth/etc/RT_Siteconfig
The content however can be included in this file:
/opt/rt4/etc/RT_Siteconfig
In there you'll have to make sure that everything is configured for your
It works!
I've configured the connection without SSL (port 389) and it works fine.
So, I've modify the file *
/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm
*
*
*
I add this perl module:
*use Net::LDAPS;*
And modify the function _GetBoundLdapObj ( l.422):
filter is your LDAP query string to determine if a particular CN is a user.
If you are connecting to an AD it would be ((objectCategory=User) (Object
Class=Person))
d_filter is your LDAP query to determine disabled users. If you are
connecting to an AD it would be a bitmask like so
Hi Mike!
Thanks for your replies.
After i had try what you said in your last mail, i've decide to reinstall a
new clean RT, and test only the external authentication plugin.
So, this is a part of my new RT_SiteConfig, with your last recommendations:
Set( @Plugins, qw(RT::Authen::ExternalAuth)
And here, another logs generate with debug:
[Mon Aug 2 12:05:00 2010] [critical]:
RT::Authen::ExternalAuth::LDAP::_GetBoundLdapObj : Cannot connect to
ldap.blanked.fr(/opt/rt3/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:437)
[Mon Aug 2 12:05:00 2010] [debug]:
Hi Mike, thanks to help me!
I've turned on RT's debug mode ( addSet($LogToFile, '*debug*');
Set($LogDir,
'/var/log/rt'); in my RT_Siteconfig.pm).
Now, when I try to loggin with a LDAP account, this lines are written in my
log file:
[Thu Jul 29 07:46:08 2010] [debug]: Reloading RT::User
If you read the ExternalAuth's RT_SiteConfig.pm in
/RTROOT/local/plugins/RT-Authen-ExternalAuth/etc/RT_SiteConfig.pm
It shows you how to set the port you are connecting on.
Set that to the port your LDAP server is listening to.
Good luck
MIke.
On Thu, Jul 29, 2010 at 4:04 AM, Anthony BRODARD
make sure you reply to the list, very important to share all this so others
can learn.
The only thing I could think of is your LDAP settings are incorrect
somewhere.
Some things I found when I was setting things up
1. user = the fully qualified CN of the user(ie CN=Mike
Hi,
I've installed RT 3.8.7 on a debian lenny with the manual procedure listed
here: http://wiki.bestpractical.com/view/ExternalAuth
So, now i try to configure my RT_Siteconfig.pm to acces at RT via my LDAPS
serveur.
This is a part of my configuration:
#PLUGINS:
Set(@Plugins,(qw(
Hi,
Try turning on RT's logging in debug mode. That helped me figure out what
was going on with my ExternalAuth. In the log, before the FAILED line you
should see a few lines showing you if it's connecting to your LDAP, finding
user etc.
Work from there!
Mike.
On Wed, Jul 28, 2010 at 3:23 AM,
The best way that I have found to do this is to run wireshark or
similar on the box itself and increase the debug output on the web
server.
The wireshark output though will give you all the LDAP details and
will show you what the server's response is. It will also show you how
you are putting
Thu 23 Apr 2009 21:26:12 GMT
Jeff Lucas wrote:
I’ve configured a DEV instance of RT 3.8.2 to test AD authentication but
am getting the following in my rt.log…
*[Thu Apr 23 19:37:58 2009] [error]: FAILED LOGIN for jeff from 10.x.x.x
(/apps/rt-3.8.2-dev/share/html/autohandler:268)*
You need
Michael Mai wrote:
Hi,
I have an user that has multiple email addresses and would like to send in
requests from all of them. From example:
asm...@company.com
asm...@gmail.com
If it is only one person that needs this functionality, simply merge the
two autocreated users (I believe
Hi All,
I am trying to figure out why External Authentication in my production
RT (version 3.6) works, but the test server I set up using (version
3.8.2) is not authenticating against the same ldap server? I followed
the steps in http://wiki.bestpractical.com/view/ExternalAuth and yet it
is
Hi,
I have an user that has multiple email addresses and would like to send in
requests from all of them. From example:
asm...@company.com
asm...@gmail.com
Currently I have AD working fine but don't want to set up another Auth source.
How can I do this?
Thanks
Michael Mai
Please ignore my previous email. I solved my problem.
Hossein
Hossein Rafighi wrote:
Hi All,
I am trying to figure out why External Authentication in my production
RT (version 3.6) works, but the test server I set up using (version
3.8.2) is not authenticating against the same ldap
34 matches
Mail list logo
