Active Directory integration with RT3?

Hello list:

I am looking to deploy RT for ticket tracking at my corp. We need RT to
integrate into our existing Active Directory database of users for
account creation and RT authentication. I have been researching the RT
wiki and found some references to LDAP Overlay, etc. I have tried to
implement several of them and so far have gotten zero positive results
at all. I can’t even get unencrypted authentication to work.

The latest User_Local.pm that I am testing is from:
http://www.justatheory.com/computers/programming/perl/rt/ldap_auth.html

I am getting the following error message:
[Mon Feb 13 16:19:14 2006] [critical]: GetExternalUserWithLDAP: Cannot
bind to LDAP: 49
(/opt/rt3/local/lib/RT/User_Local.pm:64)

My RT_Site_Config.pm looks like:

Set($LDAPExternalAuth , ‘1’);
$LdapServer=“dc1.domain.com”;
$LdapUser=“cn=Administrator,dc=domain,dc=com”;
$LdapPass=“adminpass”;
$LdapBase=“dc=domain,dc=com”;
$LdapUidAttr=“uid”;
$LdapFilter="(objectclass=*)";
$LdapTLS = 0;
$LdapGroup =“dc=domain,dc=com”;
$LdapGroupAttribute = ‘uniqueMember’;
#$LdapSSLVersion = 3;

Does anyone have any idea what might be going wrong here?
Has anyone gotten RT integrated with AD yet?
At the very least, can you point me to some accurate documentation?

Thanks a million!
Jason

Check out this site by Nathan, Oyler:
http://blank.org/memory/output/rt-ad-sso.html

Ahalya Nathan
Senior Programmer / Analyst
Information Technology, Metropolitan Utilities District
(402) 504-7180 phone
(402) 504-5180 fax-----Original Message-----
From: rt-users-bounces@lists.bestpractical.com
[mailto:rt-users-bounces@lists.bestpractical.com] On Behalf Of Jason
Fenner
Sent: Monday, February 13, 2006 10:42 AM
To: RT-Users@lists.bestpractical.com
Subject: [rt-users] Active Directory integration with RT3?

Hello list:

I am looking to deploy RT for ticket tracking at my corp. We need RT to

integrate into our existing Active Directory database of users for
account creation and RT authentication. I have been researching the RT
wiki and found some references to LDAP Overlay, etc. I have tried to
implement several of them and so far have gotten zero positive results
at all. I can’t even get unencrypted authentication to work.

The latest User_Local.pm that I am testing is from:
http://www.justatheory.com/computers/programming/perl/rt/ldap_auth.html

I am getting the following error message:
[Mon Feb 13 16:19:14 2006] [critical]: GetExternalUserWithLDAP: Cannot
bind to LDAP: 49
(/opt/rt3/local/lib/RT/User_Local.pm:64)

My RT_Site_Config.pm looks like:

Set($LDAPExternalAuth , ‘1’);
$LdapServer=“dc1.domain.com”;
$LdapUser=“cn=Administrator,dc=domain,dc=com”;
$LdapPass=“adminpass”;
$LdapBase=“dc=domain,dc=com”;
$LdapUidAttr=“uid”;
$LdapFilter="(objectclass=*)";
$LdapTLS = 0;
$LdapGroup =“dc=domain,dc=com”;
$LdapGroupAttribute = ‘uniqueMember’;
#$LdapSSLVersion = 3;

Does anyone have any idea what might be going wrong here?
Has anyone gotten RT integrated with AD yet?
At the very least, can you point me to some accurate documentation?

Thanks a million!
Jason

http://lists.bestpractical.com/cgi-bin/mailman/listinfo/rt-users

Be sure to check out the RT Wiki at http://wiki.bestpractical.com

Download a free sample chapter of RT Essentials from O’Reilly Media at
http://rtbook.bestpractical.com

WE’RE COMING TO YOUR TOWN SOON - RT Training in Amsterdam, Boston and
San Francisco - Find out more at
http://bestpractical.com/services/training.html

Yea, I tried that one too…but NTLM doesn’t appear to work with
apache2…the article was written with apache1. Have you gotten this to
work without relying on NTLM?

Nathan, Ahalya wrote: