Re: [rt-users] Not able to create external users with external auth

2017-01-12 Thread aniket tripathy 
Thanks Claude.

We had the permissions configured to allow *everyone to raise ticket*.
Where we went wrong was in the attr_match_list, for configuring the
external-auth, we were giving the RealName as well. Commenting it out
worked.

Referred:
http://requesttracker.8502.n7.nabble.com/username-same-but-realname-and-email-is-different-for-existing-user-compare-to-ldap-attribute-causedd-td7105.html

-Aniket

On Wed, Jan 11, 2017 at 4:22 PM, Claude EDUMA  wrote:

> Hi Aniket,
>
> You must configure "queue everyone privilege" to permit them to create
> ticket.
>
> Thank you.
>
> 2017-01-11 11:47 GMT+01:00 aniket tripathy :
>
>> hello,
>>
>> We are using RT 4.4 and using the external authentication mechanism from
>> a remote DB to authenticate the user. To enable others to create ticket we
>> have enabled *AutoCreateNonExternalUsers*. But any mails from outside
>> gets the response.
>>
>> *"You do not have permission to communicate with RT".*
>>
>>  Set( $UserAutocreateDefaultsOnLogin, { Privileged => 1 } );
>>  Set($AutoCreateNonExternalUsers, 1);
>>  Set( $ExternalAuthPriority, ["My_SSO_Cookie"] );
>>  Set( $ExternalInfoPriority, ["My_MySQL"] );
>>  Set($AutoCreateNonExternalUsers, 1);
>>
>> At the queue level, I have given everyone the right to  create and reply
>> to tickets.
>>
>> The logs are like:
>>
>> [11230] [Wed Jan 11 16:07:08 2017] [info]: 
>> RT::Authen::ExternalAuth::DBI::CanonicalizeUserInfo
>> INFO CHECK FAILED Key: rtUserName Value:  No User Found in
>> External Database! (/opt/rt4/sbin/../lib/RT/Authe
>> n/ExternalAuth/DBI.pm:400)
>> [11230] [Wed Jan 11 16:07:08 2017] [info]: 
>> RT::Authen::ExternalAuth::DBI::CanonicalizeUserInfo
>> INFO CHECK FAILED Key: emailId Value:  No User Found in External
>> Database! (/opt/rt4/sbin/../lib/RT/Authen/ExternalAuth/DBI.pm:400)
>> [11230] [Wed Jan 11 16:07:08 2017] [info]: 
>> RT::User::CanonicalizeUserInfoFromExternalAuth
>> returning Comments: Autocreated on ticket submission, Disabled: ,
>> EmailAddress: , Name: , Privileged: , RealName:
>>  (/opt/rt4/sbin/../lib/RT/User.pm:812)
>> [11230] [Wed Jan 11 16:07:08 2017] [warning]: Use of uninitialized value
>> $email in concatenation (.) or string at /opt/rt4/sbin/../lib/RT/User.pm
>> line 680. (/opt/rt4/sbin/../lib/RT/User.pm:680)
>> [11230] [Wed Jan 11 16:07:08 2017] [warning]: Use of uninitialized value
>> $args{"Name"} in concatenation (.) or string at
>> /opt/rt4/sbin/../lib/RT/User.pm line 143. (/opt/rt4/sbin/../lib/RT/User.
>> pm:143)
>> [11230] [Wed Jan 11 16:07:08 2017] [warning]: Use of uninitialized value
>> $args{"EmailAddress"} in concatenation (.) or string at
>> /opt/rt4/sbin/../lib/RT/User.pm line 143. (/opt/rt4/sbin/../lib/RT/User.
>> pm:143)
>> [11230] [Wed Jan 11 16:07:13 2017] [critical]: Failed to create user
>> : Must specify 'Name' attribute (/opt/rt4/sbin/../lib/RT/User.
>> pm:546)
>> [11230] [Wed Jan 11 16:07:13 2017] [crit]: Permission Denied: You do not
>> have permission to communicate with RT (/opt/rt4/sbin/../lib/RT/Inter
>> face/Email.pm:697)
>>
>>
>> Am I missing any configuration at my end?
>>
>> Thanks.
>>
>
>

Re: [rt-users] Not able to create external users with external auth

2017-01-11 Thread Claude EDUMA 
Hi Aniket,

You must configure "queue everyone privilege" to permit them to create
ticket.

Thank you.

2017-01-11 11:47 GMT+01:00 aniket tripathy :

> hello,
>
> We are using RT 4.4 and using the external authentication mechanism from a
> remote DB to authenticate the user. To enable others to create ticket we
> have enabled *AutoCreateNonExternalUsers*. But any mails from outside
> gets the response.
>
> *"You do not have permission to communicate with RT".*
>
>  Set( $UserAutocreateDefaultsOnLogin, { Privileged => 1 } );
>  Set($AutoCreateNonExternalUsers, 1);
>  Set( $ExternalAuthPriority, ["My_SSO_Cookie"] );
>  Set( $ExternalInfoPriority, ["My_MySQL"] );
>  Set($AutoCreateNonExternalUsers, 1);
>
> At the queue level, I have given everyone the right to  create and reply
> to tickets.
>
> The logs are like:
>
> [11230] [Wed Jan 11 16:07:08 2017] [info]: 
> RT::Authen::ExternalAuth::DBI::CanonicalizeUserInfo
> INFO CHECK FAILED Key: rtUserName Value:  No User Found in
> External Database! (/opt/rt4/sbin/../lib/RT/Authen/ExternalAuth/DBI.pm:
> 400)
> [11230] [Wed Jan 11 16:07:08 2017] [info]: 
> RT::Authen::ExternalAuth::DBI::CanonicalizeUserInfo
> INFO CHECK FAILED Key: emailId Value:  No User Found in External
> Database! (/opt/rt4/sbin/../lib/RT/Authen/ExternalAuth/DBI.pm:400)
> [11230] [Wed Jan 11 16:07:08 2017] [info]: RT::User::
> CanonicalizeUserInfoFromExternalAuth returning Comments: Autocreated on
> ticket submission, Disabled: , EmailAddress: , Name: , Privileged: ,
> RealName:  (/opt/rt4/sbin/../lib/RT/User.pm:812)
> [11230] [Wed Jan 11 16:07:08 2017] [warning]: Use of uninitialized value
> $email in concatenation (.) or string at /opt/rt4/sbin/../lib/RT/User.pm
> line 680. (/opt/rt4/sbin/../lib/RT/User.pm:680)
> [11230] [Wed Jan 11 16:07:08 2017] [warning]: Use of uninitialized value
> $args{"Name"} in concatenation (.) or string at
> /opt/rt4/sbin/../lib/RT/User.pm line 143. (/opt/rt4/sbin/../lib/RT/User.
> pm:143)
> [11230] [Wed Jan 11 16:07:08 2017] [warning]: Use of uninitialized value
> $args{"EmailAddress"} in concatenation (.) or string at
> /opt/rt4/sbin/../lib/RT/User.pm line 143. (/opt/rt4/sbin/../lib/RT/User.
> pm:143)
> [11230] [Wed Jan 11 16:07:13 2017] [critical]: Failed to create user
> : Must specify 'Name' attribute (/opt/rt4/sbin/../lib/RT/User.
> pm:546)
> [11230] [Wed Jan 11 16:07:13 2017] [crit]: Permission Denied: You do not
> have permission to communicate with RT (/opt/rt4/sbin/../lib/RT/
> Interface/Email.pm:697)
>
>
> Am I missing any configuration at my end?
>
> Thanks.
>

[rt-users] Not able to create external users with external auth

2017-01-11 Thread aniket tripathy 
hello,

We are using RT 4.4 and using the external authentication mechanism from a
remote DB to authenticate the user. To enable others to create ticket we
have enabled *AutoCreateNonExternalUsers*. But any mails from outside gets
the response.

*"You do not have permission to communicate with RT".*

 Set( $UserAutocreateDefaultsOnLogin, { Privileged => 1 } );
 Set($AutoCreateNonExternalUsers, 1);
 Set( $ExternalAuthPriority, ["My_SSO_Cookie"] );
 Set( $ExternalInfoPriority, ["My_MySQL"] );
 Set($AutoCreateNonExternalUsers, 1);

At the queue level, I have given everyone the right to  create and reply to
tickets.

The logs are like:

[11230] [Wed Jan 11 16:07:08 2017] [info]:
RT::Authen::ExternalAuth::DBI::CanonicalizeUserInfo INFO CHECK FAILED Key:
rtUserName Value:  No User Found in External Database!
(/opt/rt4/sbin/../lib/RT/Authen/ExternalAuth/DBI.pm:400)
[11230] [Wed Jan 11 16:07:08 2017] [info]:
RT::Authen::ExternalAuth::DBI::CanonicalizeUserInfo INFO CHECK FAILED Key:
emailId Value:  No User Found in External Database!
(/opt/rt4/sbin/../lib/RT/Authen/ExternalAuth/DBI.pm:400)
[11230] [Wed Jan 11 16:07:08 2017] [info]:
RT::User::CanonicalizeUserInfoFromExternalAuth returning Comments:
Autocreated on ticket submission, Disabled: , EmailAddress: , Name: ,
Privileged: , RealName:  (/opt/rt4/sbin/../lib/RT/User.pm:812)
[11230] [Wed Jan 11 16:07:08 2017] [warning]: Use of uninitialized value
$email in concatenation (.) or string at /opt/rt4/sbin/../lib/RT/User.pm
line 680. (/opt/rt4/sbin/../lib/RT/User.pm:680)
[11230] [Wed Jan 11 16:07:08 2017] [warning]: Use of uninitialized value
$args{"Name"} in concatenation (.) or string at
/opt/rt4/sbin/../lib/RT/User.pm line 143.
(/opt/rt4/sbin/../lib/RT/User.pm:143)
[11230] [Wed Jan 11 16:07:08 2017] [warning]: Use of uninitialized value
$args{"EmailAddress"} in concatenation (.) or string at
/opt/rt4/sbin/../lib/RT/User.pm line 143.
(/opt/rt4/sbin/../lib/RT/User.pm:143)
[11230] [Wed Jan 11 16:07:13 2017] [critical]: Failed to create user
: Must specify 'Name' attribute
(/opt/rt4/sbin/../lib/RT/User.pm:546)
[11230] [Wed Jan 11 16:07:13 2017] [crit]: Permission Denied: You do not
have permission to communicate with RT
(/opt/rt4/sbin/../lib/RT/Interface/Email.pm:697)


Am I missing any configuration at my end?

Thanks.