SSO not working

Moderator: crythias

Locked
iztok
Znuny newbie
Posts: 83
Joined: 06 Jan 2011, 14:28
Znuny Version: 3

SSO not working

Post by iztok »

Hi,

I've followed this article, trying to implement SSO for AGENTS:

http://wiki.otrs.org/index.php?title=Im ... ith_Apache

I've added this to otrs.conf:

Code: Select all

<Location /otrs>
  PerlAuthenHandler Apache2::AuthenNTLM
  AuthType ntlm,basic
  AuthName Basic
  require valid-user
  PerlAddVar ntdomain "domain.local dc02 dc03"
  PerlSetVar defaultdomain domain.local
  PerlSetVar splitdomainprefix 1
</Location>
To Config.pm I've added:

Code: Select all

$Self->{'Customer::AuthModule'} = 'Kernel::System::CustomerAuth::HTTPBasicAuth';
$Self->{CustomerPanelLoginURL} = 'http://otrs.domain.local/otrs/no_sso_login_possible.html';
$Self->{CustomerPanelLogoutURL} = 'http://otrs.domain.local/otrs/logout.html';
In error log I see this:

Bad/Missing NTLM/Basic Authorization Header for /otrs/index.pl
Connect to SMB Server failed (pdc = dc02 bdc = dc03 domain = domain error = -11/0) for /otrs/index.pl

I have checked resolv.conf, entries are as followed:

Code: Select all

search domain.local
domain domain.local
nameserver 1.1.1.1 (real ip's hidden of course :-) )
nameserver 1.1.1.2
Checked google and this forum, can't seem to find solution :(
Top
jojo
Znuny guru
Posts: 15020
Joined: 26 Jan 2007, 14:50
Znuny Version: Git Master
Contact:
Contact jojo

Re: SSO not working

Post by jojo »

thats an issue with netork or NTLM Apache module. Not an OTRS issue!
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master

Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
Top
iztok
Znuny newbie
Posts: 83
Joined: 06 Jan 2011, 14:28
Znuny Version: 3

Re: SSO not working

Post by iztok »

So I configured now Config.pm to use SSO for Agents, changed otrs.conf accordingly to documents found on the internet :)

And am now receiving this error:

Code: Select all

[2020] AuthenNTLM: Object exists user = \
[2020] AuthenNTLM: Authorization Header NTLM TlRMTVNTUAADAAAAGAAYAIQAAAA4ADgAnAAAABAAEABYAAAADAAMAGgAAAAQABAAdAAAAAAAAADUAAAABYIAAgYBsB0AAAAPtAmLYPpcTjilJDiiMH5SqFYATwBMAEoAQQBUAEUATABpAHoAdABvAGsAYgBUAFQARAAtADAAMQAwADcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABcnn5bgwcqikR/vnQ2diMgEBAAAAAAAA/T9i+qUFzAG613H5pTv6owAAAAACAAAAAAAAAAAAAAA=
[2020] AuthenNTLM: Got: 78 84 76 77 83 83 80 0 3 0 0 0 24 0 24 0 132 0 0 0 56 0 56 0 156 0 0 0 16 0 16 0 88 0 0 0 12 0 12 0 104 0 0 0 16 0 16 0 116 0 0 0 0 0 0 0 212 0 0 0 5 130 0 2 6 1 176 29 0 0 0 15 180 9 139 96 250 92 78 56 165 36 56 162 48 126 82 168 86 0 79 0 76 0 74 0 65 0 84 0 69 0 76 0 105 0 122 0 116 0 111 0 107 0 98 0 84 0 84 0 68 0 45 0 48 0 49 0 48 0 55 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 5 201 231 229 184 48 114 168 164 71 251 231 67 103 98 50 1 1 0 0 0 0 0 0 253 63 98 250 165 5 204 1 186 215 113 249 165 59 250 163 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0
[2020] AuthenNTLM: protocol=NTLMSSP, type=3, user=agent1, host=TTD-0107, domain=DOMAIN, msg_len=0
[2020] handler type == 3
[2020] AuthenNTLM: verify handle = 3 smbhandle == 140304153732736
[2020] AuthenNTLM: Verify user agent1 via smb server
[2020] AuthenNTLM: leave lock
[Thu Apr 28 15:11:47 2011] [error] Wrong password/user (rc=3/1/327681): DOMAIN\\agent1 for /otrs/index.pl
Dead end from here on .. any recommondations?
Top
thomkortekaas
Znuny newbie
Posts: 61
Joined: 17 Dec 2010, 13:22
Znuny Version: 3.0

Re: SSO not working

Post by thomkortekaas »

any errors in apache logs?
OTRS 3.0.7 with MySQL on Windows server 2003 r2 server with AD integration for customers.
Top
iztok
Znuny newbie
Posts: 83
Joined: 06 Jan 2011, 14:28
Znuny Version: 3

Re: SSO not working

Post by iztok »

Errors are pasted in code box in my post. Thats from apache (debugging was turned on). Im using Ubuntu Linux, apache 2.2., otrs 3.0.7.
Top
Locked

Return to “Help”