[rt-users] ExternalAuth problems
I am setting up a new Request Tracker 4.0.16 installation on CentOS 6.4. I am able to log into RT using the RT root password but I receive the following error when trying to login using my AD account [Thu Aug 1 14:37:33 2013] [error]: FAILED LOGIN for $UserName from $IP_Address (/usr/local/rt/sbin/../lib/RT/Interface/Web.pm:753) Below is the relavent part of my RT_SiteConfig Set($WebPort, 443); Set($WebPath, /rt); Set($WebDomain, '$hostname.$PublicDomain'); Set($rtname, '$hostname'); Set($ExternalSettings, { # AN EXAMPLE LDAP SERVICE 'My_LDAP' = { 'type' = 'ldap', 'server'= '$DC.$InternalNetwork', 'user' = '$AD_User@$InternalNetwork ', 'pass' = '$Password', 'base' = 'dc=$InternalNetwork', 'filter'= '(objectClass=*)', 'attr_map' = { 'Name' = 'displayName', 'EmailAddress' = 'mail', 'RealName' = 'cn', 'ExternalAuthId' = 'sAMAccountName', 'Gecos' = 'sAMAccountName', }, }, }); # You must install Plugins on your own, this is only an example # of the correct syntax to use when activating them. # There should only be one @Plugins declaration in your config file. Set(@MailPlugins, qw(Auth::MailFrom Filter::TakeAction)); Set(@Plugins,(qw(RT::Extension::CommandByMail RT::Authen::ExternalAuth))); 1;
Re: [rt-users] ExternalAuth problems
Try removing the extra '(' you have in front of qw in your set@plugin declaration. Jeff From my Android phone on T-Mobile. The first nationwide 4G network. Original message From: Brian Haupt brian.s.ha...@ama-inc.com Date: 08/01/2013 7:48 AM (GMT-08:00) To: rt-users@lists.bestpractical.com Subject: [rt-users] ExternalAuth problems I am setting up a new Request Tracker 4.0.16 installation on CentOS 6.4. I am able to log into RT using the RT root password but I receive the following error when trying to login using my AD account [Thu Aug 1 14:37:33 2013] [error]: FAILED LOGIN for $UserName from $IP_Address (/usr/local/rt/sbin/../lib/RT/Interface/Web.pm:753) Below is the relavent part of my RT_SiteConfig Set($WebPort, 443); Set($WebPath, /rt); Set($WebDomain, '$hostname.$PublicDomain'); Set($rtname, '$hostname'); Set($ExternalSettings, { # AN EXAMPLE LDAP SERVICE 'My_LDAP' = { 'type' = 'ldap', 'server'= '$DC.$InternalNetwork', 'user' = '$AD_User@$InternalNetwork ', 'pass' = '$Password', 'base' = 'dc=$InternalNetwork', 'filter'= '(objectClass=*)', 'attr_map' = { 'Name' = 'displayName', 'EmailAddress' = 'mail', 'RealName' = 'cn', 'ExternalAuthId' = 'sAMAccountName', 'Gecos' = 'sAMAccountName', }, }, }); # You must install Plugins on your own, this is only an example # of the correct syntax to use when activating them. # There should only be one @Plugins declaration in your config file. Set(@MailPlugins, qw(Auth::MailFrom Filter::TakeAction)); Set(@Plugins,(qw(RT::Extension::CommandByMail RT::Authen::ExternalAuth))); 1;
Re: [rt-users] ExternalAuth problems
I have tried removing the extra '(' as recommended but with no success. I have also tried using changing 'user' = $AD_User@$InternalNetwork ', to 'user' = 'cn=$Username,cn=Users,dc=internal,dc=$DomainName,dc=com', I also tried adding Set($LdapServer, 'ldaps://myDomainController.xxx.com'); Set($LdapTLS, 1); Set($LdapSSLVersion, 3); But none of these have yielded any better results. -Original Message- From: Jeff Solberg [mailto:jsolb...@intrepidls.com] Sent: Thursday, August 01, 2013 11:23 AM To: Brian Haupt; rt-users@lists.bestpractical.com Subject: RE: [rt-users] ExternalAuth problems Try removing the extra '(' you have in front of qw in your set@plugin declaration. Jeff From my Android phone on T-Mobile. The first nationwide 4G network. Original message From: Brian Haupt brian.s.ha...@ama-inc.com Date: 08/01/2013 7:48 AM (GMT-08:00) To: rt-users@lists.bestpractical.com Subject: [rt-users] ExternalAuth problems I am setting up a new Request Tracker 4.0.16 installation on CentOS 6.4. I am able to log into RT using the RT root password but I receive the following error when trying to login using my AD account [Thu Aug 1 14:37:33 2013] [error]: FAILED LOGIN for $UserName from $IP_Address (/usr/local/rt/sbin/../lib/RT/Interface/Web.pm:753) Below is the relavent part of my RT_SiteConfig Set($WebPort, 443); Set($WebPath, /rt); Set($WebDomain, '$hostname.$PublicDomain'); Set($rtname, '$hostname'); Set($ExternalSettings, { # AN EXAMPLE LDAP SERVICE 'My_LDAP' = { 'type' = 'ldap', 'server'= '$DC.$InternalNetwork', 'user' = '$AD_User@$InternalNetwork', 'pass' = '$Password', 'base' = 'dc=$InternalNetwork', 'filter'= '(objectClass=*)', 'attr_map' = { 'Name' = 'displayName', 'EmailAddress' = 'mail', 'RealName' = 'cn', 'ExternalAuthId' = 'sAMAccountName', 'Gecos' = 'sAMAccountName', }, }, }); # You must install Plugins on your own, this is only an example # of the correct syntax to use when activating them. # There should only be one @Plugins declaration in your config file. Set(@MailPlugins, qw(Auth::MailFrom Filter::TakeAction)); Set(@Plugins,(qw(RT::Extension::CommandByMail RT::Authen::ExternalAuth))); 1;
Re: [rt-users] ExternalAuth problems
Brian If you use AdsiEdit and look at the user object you are trying to use it will display the Distinguished Name needed to access the object. Like NameClass Distinguished Name CN=RQ Tracker UserCN=RQ Tracker,OU=Users_Special,OU=Copesan,DC=Copesan,DC=Local In the above case User would be 'user' = 'CN=RQ Tracker,OU=Users_Special,OU=Copesan,DC=Copesan,DC=Local', 'server'= This would be any readable Domain Controler Hope this helps. Bryon Baker Network Operations Manager Copesan - Specialists in Pest Solutions 800-267-3726 • 262-783-6261 ext. 2296 bba...@copesan.com www.copesan.com Servicing North America with Local Care -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Brian Haupt Sent: Thursday, August 01, 2013 11:06 AM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] ExternalAuth problems I have tried removing the extra '(' as recommended but with no success. I have also tried using changing 'user' = $AD_User@$InternalNetwork ', to 'user' = 'cn=$Username,cn=Users,dc=internal,dc=$DomainName,dc=com', I also tried adding Set($LdapServer, 'ldaps://myDomainController.xxx.com'); Set($LdapTLS, 1); Set($LdapSSLVersion, 3); But none of these have yielded any better results. -Original Message- From: Jeff Solberg [mailto:jsolb...@intrepidls.com] Sent: Thursday, August 01, 2013 11:23 AM To: Brian Haupt; rt-users@lists.bestpractical.com Subject: RE: [rt-users] ExternalAuth problems Try removing the extra '(' you have in front of qw in your set@plugin declaration. Jeff From my Android phone on T-Mobile. The first nationwide 4G network. Original message From: Brian Haupt brian.s.ha...@ama-inc.com Date: 08/01/2013 7:48 AM (GMT-08:00) To: rt-users@lists.bestpractical.com Subject: [rt-users] ExternalAuth problems I am setting up a new Request Tracker 4.0.16 installation on CentOS 6.4. I am able to log into RT using the RT root password but I receive the following error when trying to login using my AD account [Thu Aug 1 14:37:33 2013] [error]: FAILED LOGIN for $UserName from $IP_Address (/usr/local/rt/sbin/../lib/RT/Interface/Web.pm:753) Below is the relavent part of my RT_SiteConfig Set($WebPort, 443); Set($WebPath, /rt); Set($WebDomain, '$hostname.$PublicDomain'); Set($rtname, '$hostname'); Set($ExternalSettings, { # AN EXAMPLE LDAP SERVICE 'My_LDAP' = { 'type' = 'ldap', 'server'= '$DC.$InternalNetwork', 'user' = '$AD_User@$InternalNetwork', 'pass' = '$Password', 'base' = 'dc=$InternalNetwork', 'filter'= '(objectClass=*)', 'attr_map' = { 'Name' = 'displayName', 'EmailAddress' = 'mail', 'RealName' = 'cn', 'ExternalAuthId' = 'sAMAccountName', 'Gecos' = 'sAMAccountName', }, }, }); # You must install Plugins on your own, this is only an example # of the correct syntax to use when activating them. # There should only be one @Plugins declaration in your config file. Set(@MailPlugins, qw(Auth::MailFrom Filter::TakeAction)); Set(@Plugins,(qw(RT::Extension::CommandByMail RT::Authen::ExternalAuth))); 1;
Re: [rt-users] ExternalAuth problems
When you removed the extra '(' did you also remove the extra ')' from the end of the declaration? Your plug in line should look like this Set(@Plugins, qw(RT::Extension::CommandByMail RT::Authen::ExternalAuth)); Restart Apache.. If this doesn’t work go into RT as root then go into the system configuration Tools-- Configuration -- tools-- System Configuration And see if the plugs are being set. Hope this helps. Jeff -Original Message- From: rt-users-boun...@lists.bestpractical.com [mailto:rt-users-boun...@lists.bestpractical.com] On Behalf Of Brian Haupt Sent: Thursday, August 01, 2013 9:06 AM To: rt-users@lists.bestpractical.com Subject: Re: [rt-users] ExternalAuth problems I have tried removing the extra '(' as recommended but with no success. I have also tried using changing 'user' = $AD_User@$InternalNetwork ', to 'user' = 'cn=$Username,cn=Users,dc=internal,dc=$DomainName,dc=com', I also tried adding Set($LdapServer, 'ldaps://myDomainController.xxx.com'); Set($LdapTLS, 1); Set($LdapSSLVersion, 3); But none of these have yielded any better results. -Original Message- From: Jeff Solberg [mailto:jsolb...@intrepidls.com] Sent: Thursday, August 01, 2013 11:23 AM To: Brian Haupt; rt-users@lists.bestpractical.com Subject: RE: [rt-users] ExternalAuth problems Try removing the extra '(' you have in front of qw in your set@plugin declaration. Jeff From my Android phone on T-Mobile. The first nationwide 4G network. Original message From: Brian Haupt brian.s.ha...@ama-inc.com Date: 08/01/2013 7:48 AM (GMT-08:00) To: rt-users@lists.bestpractical.com Subject: [rt-users] ExternalAuth problems I am setting up a new Request Tracker 4.0.16 installation on CentOS 6.4. I am able to log into RT using the RT root password but I receive the following error when trying to login using my AD account [Thu Aug 1 14:37:33 2013] [error]: FAILED LOGIN for $UserName from $IP_Address (/usr/local/rt/sbin/../lib/RT/Interface/Web.pm:753) Below is the relavent part of my RT_SiteConfig Set($WebPort, 443); Set($WebPath, /rt); Set($WebDomain, '$hostname.$PublicDomain'); Set($rtname, '$hostname'); Set($ExternalSettings, { # AN EXAMPLE LDAP SERVICE 'My_LDAP' = { 'type' = 'ldap', 'server'= '$DC.$InternalNetwork', 'user' = '$AD_User@$InternalNetwork', 'pass' = '$Password', 'base' = 'dc=$InternalNetwork', 'filter'= '(objectClass=*)', 'attr_map' = { 'Name' = 'displayName', 'EmailAddress' = 'mail', 'RealName' = 'cn', 'ExternalAuthId' = 'sAMAccountName', 'Gecos' = 'sAMAccountName', }, }, }); # You must install Plugins on your own, this is only an example # of the correct syntax to use when activating them. # There should only be one @Plugins declaration in your config file. Set(@MailPlugins, qw(Auth::MailFrom Filter::TakeAction)); Set(@Plugins,(qw(RT::Extension::CommandByMail RT::Authen::ExternalAuth))); 1;